Arquivo

Artigos com Etiquetas ‘windows’

Installing SSL using OpenSSL on a WAMP localhost

4, Janeiro, 2014 Nenhum comentário

Before starting with all the key stuff, I installed the OpenSSL binaries for Windows into the System directory.

Your paths may be slightly different.. so change them appropriately.

GENERATE KEY

Again in the command prompt, go to C:\wamp\Apache2\bin and run the following command:

The command runs and prompts you to enter a PEM pass phrase and verify it. Since we are doing this locally, just put in some sort of “password”, but write it down, because you will need it in the next step.

It will then ask you to enter information that will be incorporated into your certificate request. When the command finishes, it has created several files, including privkey.pem, in c:\wamp\apache2\bin.

REMOVE PASSPHRASE

Run the following command:

You will be prompted for the pass phrase from the previous step. The RSA key is written and the file webserver.key is now available in the folder.

CONVERT INTO SIGNED CERTIFICATE

Run the following command to create a certificate which expires after one year:

STORE CERTIFICATE FILES

Create a folder c:\wamp\OpenSSL with the following subfolders:

Copy the following files to /certs/:

Copy the following files to /private/:

MODIFY HTTPD-SSL.CONF

Change the following lines, adjusting the email address and the paths to your settings:

SSLMutex default

MODIFY OPENSSL.CNF

There is a file openssl.cnf in c:\wamp\Apache2\conf even though no extension is shown in Windows Explorer. Go to the DOS command prompt and run DIR to see the file extension. Make a backup copy of this file first and rename it in DOS to openssl.cnf.txt so that you can edit it.

Modify the base directory:

Go to the DOS prompt and change the name of the file back to openssl.cnf.

MODIFY HTTPD.CONF

Last, but not least, make sure your secure site is part of the virtual hosts in Apache:

Ensure SSL is Enabled
Make sure that Apache is setup to even use SSL.
Do this by clicking the WAMP icon in your tray,
hovering to: Apache > Apache Modules,
scroll through the list and make sure that ssl_module has a check next to it.
If not, then click it.

TEST HTTPS

Run httpd –t and make sure the syntax is OK.

Restart Apache.

Check that port 443 is open by running the following in the command prompt:

Test the https connection from your browser and hopefully it works.