Skip to content
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.


This is a small README describing how to
generate selfsigned certs with multiple
subjectAltName which is required if we want to
virthost several ssl servers on the same ip.

Edit he openssl.cfg here - especially the part
where we define a set of subjectAltName

subjectAltName                  = @aliases

DNS.1 =
DNS.2 =

Create a new CA using

# /usr/lib/ssl/misc/ -newca

Create a CSR

# openssl req -new -config ./openssl.cnf -newkey rsa:1024 -nodes -keyout yaws.ppk -out yaws.csr

Sign the csr

# openssl ca -config ./openssl.cnf -extensions sslserver -in yaws.csr -out yaws-cert.pem
Something went wrong with that request. Please try again.