?
Solved

Signing SSL certs to work with remote API's

Posted on 2007-03-23
3
Medium Priority
?
293 Views
Last Modified: 2010-03-04
I have a scripts that connects to API via https. In the script config section it asks me for:

    "ssl_connection" => true,
    "ssl_strong_verify" => true,
    "ssl_cert" => "./client.crt",
    "ssl_cacert" => "./CA.pem",

I've sent my request.pem to the API provider and got a signed cert back (signed.pem), but I'm a bit lost as to what I need to do next. I guess I need to somehow sign client.crt with my key and signed.pem and then export it for the script.

I found a couple of tutorials on how to self-sign certs, but can't find anything on how to sign a 3rd party cert.

Can anyone point me to a decent tutorial?

I'm using Openssl  0.9.8e BTW.
0
Comment
Question by:thunder99
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 62

Accepted Solution

by:
gheist earned 500 total points
ID: 18784545
"ssl_key" => "signed.pem"
0
 

Author Comment

by:thunder99
ID: 18791584
Great, thanks for that gheist. Now I get a 'unable to set private key file', but I think the key may be wrong, so I'll get the cert resigned and try it.

Thanks again.
0
 
LVL 62

Expert Comment

by:gheist
ID: 18793351
cert should be signed
key should not...


i.e
"ssl_key" => "client.crt"

"ssl_cert" => "signed.pem"
0

Featured Post

Plug and play, no additional software required!

The ATEN UE3310 USB3.1 Gen1 Extender Cable allows users to extend the distance between the computer and USB devices up to 10 m (33 ft). The UE3310 is a high-quality, cost-effective solution for professional environments such as hospitals, factories and business facilities.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction As you’re probably aware the HTTP protocol offers basic / weak authentication, which in combination with the relevant configuration on your web server, provides the ability to password protect all or part of your host.  If you were not…
Introduction This article is intended for those who are new to PHP error handling (https://www.experts-exchange.com/articles/11769/And-by-the-way-I-am-New-to-PHP.html).  It addresses one of the most common problems that plague beginning PHP develop…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question