I’ll try to explain the easiest way to use a .pfx file that can be used to install SSL on NGINX.
We’ll start by extracting the CRT file using openssl with the following command
openssl pkcs12 -in ./YOUR-PFX-FILE.pfx -clcerts -nokeys -out domain.crt
Followed by extracting the private key with the following command
openssl pkcs12 -in ./YOUR-PFX-FILE.pfx -nocerts -nodes -out domain.rsa
Now we can proceed by setting up a most simple NGINX server using the following configurations
server {
listen 443 ssl;
server_name domain.com domain.com;
ssl_certificate /path/to/your/CRT_file/domain.crt;
ssl_certificate_key /path/to/your/RSA_file/domain.rsa;
root /mnt/coming-soon/bushbeans;
index index.html;
include /etc/nginx/mime.types;
}
Voila! All done.
This article was first published on the Knoldus blog.
No comments:
Post a Comment