Before you can use SSL (Secure Socket Layer) to encrypt your web traffic, you must have an SSL certificate, which you will associate with your ServerTemplate. Generally, SSL certificates used with production servers are issued by third-party certificate authorities (CAs).
Before a certificate authority will issue an SSL certificate, you must provide them with a CSR (certificate signing request) containing encrypted company and website information.
Below are the basic steps required to obtain an SSL server certificate from a CA and assign it to a ServerTemplate:
You can generate the necessary public CSR and associated private key using OpenSSL. After connecting to a server instance via SSH, you can run a command string like the following:
openssl req -new -nodes -keyout myserver.key -out server.csr
More information on CSRs can be found on Wikipedia at http://en.wikipedia.org/wiki/Certificate_signing_request.
Some third-party certificate authorities (CAs) issuing SSL certificates are:
© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.