Note: Please go to to access the current RightScale documentation set. Also, feel free to Chat with us!
Home > FAQs > How do I create an SSL certificate for my web server?

How do I create an SSL certificate for my web server?

Table of Contents

Background Information

Before you can use SSL (Secure Socket Layer) to encrypt your web traffic, you must have an SSL certificate, which you will associate with your ServerTemplate. Generally, SSL certificates used with production servers are issued by third-party certificate authorities (CAs).

Before a certificate authority will issue an SSL certificate, you must provide them with a CSR (certificate signing request) containing encrypted company and website information.



Below are the basic steps required to obtain an SSL server certificate from a CA and assign it to a ServerTemplate:

  1. Generate a private key file and CSR file for your web server.
  2. Provide the certificate authority with the contents of your CSR.
  3. Attach the SSL server certificate received from the CA to your RightScale ServerTemplate. (See the article titled How do I set up SSL?.)


You can generate the necessary public CSR and associated private key using OpenSSL. After connecting to a server instance via SSH, you can run a command string like the following:

openssl req -new -nodes -keyout myserver.key -out server.csr

More information on CSRs can be found on Wikipedia at

Some third-party certificate authorities (CAs) issuing SSL certificates are:

  • Symantec
  • VeriSign
  • Thawte
  • InstantSSL (Comodo)
  • Entrust
  • GeoTrust
  • GoDaddy


You must to post a comment.
Last modified
21:25, 16 May 2013



This page has no classifications.



© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.