Solved

Signing SSL certs to work with remote API's

Posted on 2007-03-23
3
283 Views
Last Modified: 2010-03-04
I have a scripts that connects to API via https. In the script config section it asks me for:

    "ssl_connection" => true,
    "ssl_strong_verify" => true,
    "ssl_cert" => "./client.crt",
    "ssl_cacert" => "./CA.pem",

I've sent my request.pem to the API provider and got a signed cert back (signed.pem), but I'm a bit lost as to what I need to do next. I guess I need to somehow sign client.crt with my key and signed.pem and then export it for the script.

I found a couple of tutorials on how to self-sign certs, but can't find anything on how to sign a 3rd party cert.

Can anyone point me to a decent tutorial?

I'm using Openssl  0.9.8e BTW.
0
Comment
Question by:thunder99
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 62

Accepted Solution

by:
gheist earned 125 total points
ID: 18784545
"ssl_key" => "signed.pem"
0
 

Author Comment

by:thunder99
ID: 18791584
Great, thanks for that gheist. Now I get a 'unable to set private key file', but I think the key may be wrong, so I'll get the cert resigned and try it.

Thanks again.
0
 
LVL 62

Expert Comment

by:gheist
ID: 18793351
cert should be signed
key should not...


i.e
"ssl_key" => "client.crt"

"ssl_cert" => "signed.pem"
0

Featured Post

Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
IPA - can it be run on a web server? 3 228
Guacamole and browser performance 1 127
ignore other .htaccess 2 71
web server dns redirect 5 62
If your site has a few sections that need to be secure when data is transmitted between the server and local computer, such as a /order/ section for ordering or /customer/ which contains customer data, etc it would of course be recommended to secure…
It is possible to boost certain documents at query time in Solr. Query time boosting can be a powerful resource for finding the most relevant and "best" content. Of course the more information you index, the more fields you will be able to use for y…
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question