DEV Community

Andrei Canta
Andrei Canta

Posted on • Originally published at deiucanta.com

Self-Signed Certificates that Work in Chrome

#ssl #chrome #certificate

This article was originally posted on my personal blog.

Creating a self-signed certificate is quite simple. However, Google Chrome flags most of them as insecure and doesn't even give you the "proceed" button/link.

In order to make it work, you need to add -addext "extendedKeyUsage = serverAuth" in the openssl command. Here is a complete example

openssl req \
  -x509 \
  -nodes \
  -days 365 \
  -newkey rsa:2048 \
  -keyout server.key \
  -out server.crt \
  -addext "extendedKeyUsage = serverAuth"
Enter fullscreen mode Exit fullscreen mode

This command will give you two files: server.key and server.crt.

If you want to run the same command in a non-interactive mode you just add -subj "/C=US/ST=State/L=Locality/O=Organization/CN=www.example.com"

Top comments (0)

Read next

sago35 profile image

Introduction to the event "TinyGo Keeb Tour 2024"

sago35 -

adler_hsieh profile image

Making Better Decisions with AI as Engineering Managers: A Prompt Guide

Adler Hsieh -

sunilkumrdash profile image

9 open-source AI coding tools that every developer should know 🎯

Sunil Kumar Dash -

virajlakshitha profile image

Orchestrating Complex Workflows with AWS Step Functions and NestJS: A Deep Dive

Viraj Lakshitha Bandara -