There are NUMEROUS instructions online for generating SSL files that contain the Subject Alternative Name entry, as well as the other info needed to create a legitimate SSL certificate. The most comprehensive and useful instructions I found here: https://stackoverflow.com/questions/21297139/how-do-you-sign-certificate-signing-request-with-your-certification-authority/21340898#21340898.
Sadly, even though following those instructions to the letter, which does produce a well-formed PEM file that contains all of the necessary fields, the file is NOT readable by XAMPP.
I've been using this routine for generating SSL certificates for use with XAMPP, which is the default routine in makecert.bat:
- Code: Select all
bin\openssl req -new -out server.csr
bin\openssl rsa -in privkey.pem -out server.key
bin\openssl x509 -in server.csr -out server.crt -req -signkey server.key -days 365
Using the default openssl.cnf file, it works, but it does not have the necessary commands for creating the subjectAltName values, and no amount of editing it has worked for me.
Could someone please explain how to edit the default openssl.cnf file as well as whatever modifications to makecert.bat are necessary to enable this? I predict this will quickly become an issue as developers begin to use Chrome 58+.
Many thanks