Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
L
L
ligisayan2020-08-09 15:41:32
Digital certificates
ligisayan, 2020-08-09 15:41:32

How to include new domain in SSL certificate on OpenServer?

Hello! There is a local OpenServer .
I have installed ssl certificates on several domains. Everything is good with them, they have earned.

And now I need to add another domain, and this is where problems already arise.
- If I just add a record about the new domain DNS.2 = new2.test to VC3 and run the generators, then no additional information is entered into the certificate.

- If I delete the certificate I created from the root directory of the certificate, and initially replace the name CN=PhpStorm with CN=PhpAuto in the batch file, then the old CN=PhpStorm certificate is created with a list of domains that does not include the latter.

It seems that somewhere in the registry information about the previous certificate is not cleared and continues to be stored in it. How to include a new domain in a certificate?
Batch and VC3 generators below.

generate.bat

@echo off
set OPENSSL_CONF=%~dp0..\conf\openssl.cnf
..\bin\openssl req -x509 -sha256 -newkey rsa:2048 -nodes -days 5475 -keyout rootCA.key -out rootCA.crt -subj "/CN=OSPanel/"
..\bin\openssl req -newkey rsa:2048 -nodes -days 5475 -keyout server.key -out server.csr -subj "/CN=PhpAuto/"
..\bin\openssl x509 -req -sha256 -days 5475 -in server.csr -extfile v3.txt -CA rootCA.crt -CAkey rootCA.key -CAcreateserial -out server.crt
..\bin\openssl dhparam -out dhparam.pem 2048


install_https_openserver.bat
@echo off
title Copy to userdata and install certs

set CURRENTDIR=%~dp0
set OSPATH=%CURRENTDIR%..\..\..\..\userdata\config\cert_files

xcopy /y "%CURRENTDIR%dhparam.pem" "%OSPATH%"
xcopy /y "%CURRENTDIR%rootCA.crt" "%OSPATH%"
xcopy /y "%CURRENTDIR%rootCA.key" "%OSPATH%"
xcopy /y "%CURRENTDIR%rootCA.srl" "%OSPATH%"
xcopy /y "%CURRENTDIR%server.crt" "%OSPATH%"
xcopy /y "%CURRENTDIR%server.csr" "%OSPATH%"
xcopy /y "%CURRENTDIR%server.key" "%OSPATH%"

certutil -enterprise -f -v -AddStore "Root" "%OSPATH%\rootCA.crt"
certutil -enterprise -f -v -AddStore "Root" "%OSPATH%\server.crt"

pause


VC3
nsComment = "Open Server Panel Generated Certificate"
basicConstraints = CA:false
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid,issuer
keyUsage = nonRepudiation, digitalSignature, keyEncipherment

subjectAltName = @alt_names
[alt_names]
DNS.1 = new1.test
DNS.2 = new2.test

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
V
Vanik Khachatryan2018-07-02 20:21:38
Can Elephant.io work with SSL? 0Reply
H
hrvasiliy2016-02-16 17:09:13
How to set up your certificate on cloudflare? 2Reply
A
AdNahim2020-07-03 15:38:28
How to fix SSL_ERROR_ACCESS_DENIED_ALERT on server side? 2Reply
K
Kirill Alekseev2016-02-22 12:41:18
Is there a free hosting service that supports installation of third-party SSL certificates? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question