Just got a new SSL cert that was created by someone else. For some reason, the certificate key was created with a password. Now every time I restart apache, it wants me to type in the password. That will be a real problem when I am not at the console and the server asks for the password, and I really do not want to have to look up that obscure password every time. Normally, you should leave the password blank when signing a cert for apache. But when someone else have already done it, you can still remove it.
I found the solution here: http://www.insivia.com/removing-a-pass-phrase-from-a-ssl-certificate/
WARNING: I would highly recommend backing up your existing key file before regenerating it.
# openssl rsa -in www.domain.com.key -out www.domain.com.key
No comments:
Post a Comment