DEV Community

Yaroslav Polyakov
Yaroslav Polyakov

Posted on • Updated on

Your own Certificate Authority (CA) in ONE simple command

#ssl #tls #https #openssl

You can find many instructions how to make certificates with OpenSSL. OpenSSL is very good except... it's too complex.

Showcert is OpenSSL for humans, much simpler to use and it has gencert utility to generate certificates. Very easy.

Generate self-signed cert with simple command 

gencert example.com www.example.com
Enter fullscreen mode Exit fullscreen mode

This will make self-signed cert. Easy, isn't it?

Your own CA

Generate CA certificate (1 command):

gencert --ca MyCA
Enter fullscreen mode Exit fullscreen mode

Thats all! Now, you can import generated MyCA.pem file to browsers and generate signed certificates for sites:

gencert --cacert MyCA.pem --cakey MyCA.key example.com
Enter fullscreen mode Exit fullscreen mode

What could be simpler?

Install showcert and play for yourself.

Top comments (0)

Read next

lluistech profile image

Nunca es tarde para aprender a programar.

Lluís Camell -

dipakahirav profile image

Part 1: Getting Started with Node.js - An Introduction

Dipak Ahirav -

harishprabhu02 profile image

Celebrate Earth Day by being aware of it's importance.

HarishPrabhu-02 -

revathykarthik profile image

MANUAL TESTING

Revathy -