One
Generate secret Key key, run:
$ openssl genrsa -des3 -out server.key 2048
There will be two times required to enter the password, enter the same one can
Enter password
Then you get a Server.key file.
Later use of this file (via the command or API provided by OpenSSL) may often require a password to be entered, and if you want to remove the password, you can use the following command:
$ openssl rsa -in server.key -out server.key
Create the request file for the server certificate SERVER.CSR, run:
openssl req -new -key server.key -out server.csr
Where Country name Cn,common name fill in the hostname can also not fill, if not fill out the browser will be considered unsafe. The rest can be filled out.
Two
Stick CSR into GoDaddy
Wait for GoDaddy audit about 10 minutes or so.
Download Nginx file 8989513850ed8f3d.crt put in
ssl_certificate/root/lee/keys/server.crt; #配置证书位置
ssl_certificate_key/root/Lee/keys/server.key; #配置秘钥位置
GoDaddy nginx HTTPS configuration