问题: 宝塔不能获取到证书
宝塔自己的无法创建了
所以需要自己创建证书,配置到本地环境
- 我因为已经安装git, 所以不用单独安装openssl
$ git config --list | grep http.sslbackend
http.sslbackend=openssl
- 进入 git bash 使用
openssl生成证书;
openssl req -x509 -newkey rsa:2048 -nodes -keyout 2key.pem -out 2cert.pem -days 365
Country Name (2 letter code) [AU]: CN
State or Province Name (full name) [Some-State]: Beijing
Locality Name (eg, city) []: Beijing
Organization Name (eg, company) []: Wozewo Inc.
Organizational Unit Name (eg, section) []: Dev
Common Name (e.g. server FQDN or YOUR name) []: www.wozewo.com //关键点
Email Address []: test@wozewo.com
注意:Common Name 是指定的域名 ip 映射填写自定义的域名
生成的文件 2key.pem 和 2cert.pem 自己在磁盘中找一下
- 配置证书
配置好宝塔和ip映射 就可以访问了
报错:
- 如果自行安装的要在openssl目录中创建证书, 或者配置好openssl的环境变量 cmd -> openssl req -x509 -newkey rsa:2048 -nodes -keyout 2key.pem -out 2cert.pem -days 365
C:\Users\ZP>openssl req -x509 -newkey rsa:2048 -nodes -keyout 3key.pem -out 3cert.pem -days 365
Can't open "C:\Program Files\Common Files\ssl/openssl.cnf" for reading, No such file or directory
08750000:error:80000003:system library:BIO_new_file:No such process:crypto\bio\bss_file.c:67:calling fopen(C:\Program Files\Common Files\ssl/openssl.cnf, r)
08750000:error:10000080:BIO routines:BIO_new_file:no such file:crypto\bio\bss_file.c:75:
SAN
openssl req -x509 -newkey rsa:2048 -nodes -keyout agrinexus.key -out agrinexus.crt -days 3650 -addext "subjectAltName=DNS:agrinexus.com,DNS:*.agrinexus.com"
// 关键点 DNS和域名
- "subjectAltName=DNS:agrinexusfeed.com"
- Common Name (e.g. server FQDN or YOUR name) []: www.wozewo.com
