{"id":1309,"date":"2022-11-18T15:11:13","date_gmt":"2022-11-18T14:11:13","guid":{"rendered":"https:\/\/apfelcast.com\/?p=1309"},"modified":"2022-11-18T15:11:13","modified_gmt":"2022-11-18T14:11:13","slug":"vertrauenswuerdige-ssl-zertifikate-selbst-erstellen-einfache-schritt-fuer-schritt-anleitung","status":"publish","type":"post","link":"https:\/\/it-ion.de\/index.php\/2022\/11\/18\/vertrauenswuerdige-ssl-zertifikate-selbst-erstellen-einfache-schritt-fuer-schritt-anleitung\/","title":{"rendered":"Vertrauensw\u00fcrdige SSL Zertifikate selbst erstellen! Einfache Schritt-f\u00fcr-Schritt Anleitung"},"content":{"rendered":"\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n <div class=\"brlbs-cmpnt-container brlbs-cmpnt-content-blocker brlbs-cmpnt-with-individual-styles\" data-borlabs-cookie-content-blocker-id=\"default\" data-borlabs-cookie-content=\"PGlmcmFtZSB0aXRsZT0iVmVydHJhdWVuc3fDvHJkaWdlIFNTTCBaZXJ0aWZpa2F0ZSBzZWxic3QgZXJzdGVsbGVuISBFaW5mYWNoZSBTY2hyaXR0LWbDvHItU2Nocml0dCBBbmxlaXR1bmciIHdpZHRoPSI3MjAiIGhlaWdodD0iNDA1IiBzcmM9Imh0dHBzOi8vd3d3LnlvdXR1YmUuY29tL2VtYmVkL2J2NDdEUl9BMGh3P2ZlYXR1cmU9b2VtYmVkIiBmcmFtZWJvcmRlcj0iMCIgYWxsb3c9ImFjY2VsZXJvbWV0ZXI7IGF1dG9wbGF5OyBjbGlwYm9hcmQtd3JpdGU7IGVuY3J5cHRlZC1tZWRpYTsgZ3lyb3Njb3BlOyBwaWN0dXJlLWluLXBpY3R1cmUiIGFsbG93ZnVsbHNjcmVlbj48L2lmcmFtZT4=\"><div class=\"brlbs-cmpnt-cb-preset-a\"> <p class=\"brlbs-cmpnt-cb-description\">Sie sehen gerade einen Platzhalterinhalt von <strong>Standard<\/strong>. Um auf den eigentlichen Inhalt zuzugreifen, klicken Sie auf die Schaltfl\u00e4che unten. Bitte beachten Sie, dass dabei Daten an Drittanbieter weitergegeben werden.<\/p> <div class=\"brlbs-cmpnt-cb-buttons\"> <a class=\"brlbs-cmpnt-cb-btn\" href=\"#\" data-borlabs-cookie-unblock role=\"button\">Inhalt entsperren<\/a> <a class=\"brlbs-cmpnt-cb-btn\" href=\"#\" data-borlabs-cookie-accept-service role=\"button\" style=\"display: none\">Erforderlichen Service akzeptieren und Inhalte entsperren<\/a> <\/div> <a class=\"brlbs-cmpnt-cb-provider-toggle\" href=\"#\" data-borlabs-cookie-show-provider-information role=\"button\">Mehr Informationen<\/a> <\/div><\/div>\n<\/div><\/figure>\n\n\n\n<p>In diesem Video erfahrt ihr wie Ihr vertrauensw\u00fcrdige selbst signierte SSL f\u00fcr eueren internen Server und Services erstellen k\u00f6nnt. Das erh\u00f6ht die Sicherheit euerer Dienste und macht die Nutzung dieser deutlich komfortabler.<br><br>\u00bb SSL-Zertifikate mit Skript erstellen: <a href=\"https:\/\/cc.apfelcast.com\/fbjpy\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/cc.apfelcast.com\/fbjpy<\/a><br>\u00bb Eigenen DNS-Server erstellen: <a href=\"https:\/\/cc.apfelcast.com\/jw11z\">https:\/\/cc.apfelcast.com\/jw11z<\/a><\/p>\n\n\n\n<p><\/p>\n\n\n\n<p>\u00bb Weitere Videos:<br>OpenSource: <a href=\"https:\/\/www.youtube.com\/watch?v=VSMLcA9nG28&amp;list=PLLg1WgOBYXOtZOr2ZWmkmnYuRH6ZbjFZ3\">https:\/\/www.youtube.com\/watch?v=VSMLcA9nG28&amp;list=PLLg1WgOBYXOtZOr2ZWmkmnYuRH6ZbjFZ3<\/a><br>HomeServer selbst bauen: <a href=\"https:\/\/www.youtube.com\/watch?v=QdjwL3KK0Ys&amp;list=PLLg1WgOBYXOs3dFOlaujpPLXVkq06btrk\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/www.youtube.com\/watch?v=QdjwL3KK0Ys&amp;list=PLLg1WgOBYXOs3dFOlaujpPLXVkq06btrk<\/a><br>Alles rund um Nextcloud: <a href=\"https:\/\/www.youtube.com\/watch?v=mlRAaZT53Rg&amp;list=PLLg1WgOBYXOtQOwYQjJc1GbuYz-wJgmtN\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/www.youtube.com\/watch?v=mlRAaZT53Rg&amp;list=PLLg1WgOBYXOtQOwYQjJc1GbuYz-wJgmtN<\/a><br>Kostenlose Telefonanlage: <a href=\"https:\/\/www.youtube.com\/watch?v=bHl-HupKr44&amp;list=PLLg1WgOBYXOv5ERarwK5BZlh0pYrf5krR\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/www.youtube.com\/watch?v=bHl-HupKr44&amp;list=PLLg1WgOBYXOv5ERarwK5BZlh0pYrf5krR<\/a><\/p>\n\n\n\n<div id=\"93964-1\"><script src=\"\/\/ads.themoneytizer.com\/s\/gen.js?type=1\"><\/script><script src=\"\/\/ads.themoneytizer.com\/s\/requestform.js?siteId=93964&amp;formatId=1\"><\/script><\/div>\n\n\n\n<h3 class=\"wp-block-heading\">Im Video verwendete Befehle:<\/h3>\n\n\n\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"shell\" data-enlighter-theme=\"\" data-enlighter-highlight=\"\" data-enlighter-linenumbers=\"\" data-enlighter-lineoffset=\"\" data-enlighter-title=\"\" data-enlighter-group=\"\">########### Create your own Certificate Authority and Certificates ###########\n\n1. Create Certificate Authority\n\n1.1 Create central certificate folder\nmkdir ~\/certs\ncd ~\/certs\n\n1.2 generate private key for CA\nopenssl genrsa -des3 -out myCA.key 2048\n\n1.3 create CA root certificate\nopenssl req -x509 -new -nodes -key myCA.key -sha256 -days 1825 -out myCA.pem\n\n\n2. Create certificate signed by own CA\n\n2.1 generate private key for certificate \nopenssl genrsa -out demo.lan.key 2048\n\n2.2 create CSR\nopenssl req -new -key demo.lan.key -out demo.lan.csr\n\n2.3 create an X509 V3 certificate extension config file\nnano demo.lan.ext\n\n\nauthorityKeyIdentifier=keyid,issuer\nbasicConstraints=CA:FALSE\nkeyUsage = digitalSignature, nonRepudiation, keyEncipherment, dataEncipherment\nsubjectAltName = @alt_names\n\n[alt_names]\nDNS.1 = demo.lan\n\n\n2.4 create the certificate: using our CSR, the CA private key, the CA certificate, and the config file\n\nopenssl x509 -req -in demo.lan.csr -CA myCA.pem -CAkey myCA.key \\\n-CAcreateserial -out demo.lan.crt -days 825 -sha256 -extfile demo.lan.ext\n\n3. Use Certificate with apache\n\na2enmod ssl\n\nnano \/etc\/apache2\/sites-available\/demo.lan.conf\n\n\n&lt;VirtualHost *:443>\n   ServerName demo.lan\n   DocumentRoot \/var\/www\/html\n\n   SSLEngine on\n   SSLCertificateFile \/root\/certs\/demo.lan.crt\n   SSLCertificateKeyFile \/root\/certs\/demo.lan.key\n&lt;\/VirtualHost>\n\na2ensite demo.lan.conf\n\nservice apache2 restart\n\n4. Add CA to client\n\n4.1 Mac OS\nsudo security add-trusted-cert -d -r trustRoot -k \"\/Library\/Keychains\/System.keychain\" myCA.pem\n\n4.2 Linux \nsudo cp myCA.pem \/usr\/local\/share\/ca-certificates\/myCA.crt \nsudo update-ca-certificates<\/pre>\n","protected":false},"excerpt":{"rendered":"<p>In diesem Video erfahrt ihr wie Ihr vertrauensw\u00fcrdige selbst signierte SSL f\u00fcr eueren internen Server&#8230;<\/p>\n","protected":false},"author":1,"featured_media":1313,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_kad_blocks_custom_css":"","_kad_blocks_head_custom_js":"","_kad_blocks_body_custom_js":"","_kad_blocks_footer_custom_js":"","_kad_post_transparent":"","_kad_post_title":"","_kad_post_layout":"","_kad_post_sidebar_id":"","_kad_post_content_style":"","_kad_post_vertical_padding":"","_kad_post_feature":"","_kad_post_feature_position":"","_kad_post_header":false,"_kad_post_footer":false,"_kad_post_classname":"","footnotes":""},"categories":[1],"tags":[],"class_list":["post-1309","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-allgemein"],"taxonomy_info":{"category":[{"value":1,"label":"Allgemein"}]},"featured_image_src_large":["https:\/\/it-ion.de\/wp-content\/uploads\/2022\/11\/thumbnail_eigne-ca-ssl-1024x576.jpg",1024,576,true],"author_info":{"display_name":"Daniel Klozb\u00fccher","author_link":"https:\/\/it-ion.de\/index.php\/author\/wp-master\/"},"comment_info":0,"category_info":[{"term_id":1,"name":"Allgemein","slug":"allgemein","term_group":0,"term_taxonomy_id":1,"taxonomy":"category","description":"","parent":0,"count":89,"filter":"raw","cat_ID":1,"category_count":89,"category_description":"","cat_name":"Allgemein","category_nicename":"allgemein","category_parent":0}],"tag_info":false,"_links":{"self":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/posts\/1309","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/comments?post=1309"}],"version-history":[{"count":0,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/posts\/1309\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/media\/1313"}],"wp:attachment":[{"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/media?parent=1309"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/categories?post=1309"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/it-ion.de\/index.php\/wp-json\/wp\/v2\/tags?post=1309"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}