Generate a Self-Signed Certificate with OpenSSL
Use OpenSSL to generate an RSA private key and certificate.
You need the certificate to set up the contact center. The reqTelephonyIntegrationCertificate value should be the value in server.crt from these steps.
- Create a folder to hold the generated certificate: $ mkdir certificates
- Change the current directory to the certificates folder: $ cd certificates
-
In the certificates folder, specify a password and generate an RSA private key. Replace
<your_password> with your own password. Include a -traditional flag to generate a key using the traditional
PKCS #1 format instead of the PKCS #8 format.
- Create a key file from the server.pass.key file, using the password that you just created. Include a -traditional flag to generate a key using the traditional PKCS #1 format instead of the PKCS #8 format. $ openssl rsa -traditional -passin pass:<your_password> -in server.pass.key -out server.key
- Delete the server.pass.key: $ rm server.pass.key
- Request and generate the certificate: $ openssl req -new -key server.key -out server.csr
- Enter the requested information. Press Enter when prompted for the challenge password. To skip entering a company name, enter a period (.).
- Generate the SSL certificate: $ openssl x509 -req -sha256 -days 365 -in server.csr -signkey server.key -out server.crt