1*e7be843bSPierre ProncheryUseful Links: 2*e7be843bSPierre Pronchery 3*e7be843bSPierre ProncheryOpenSSL API Documentation: https://www.openssl.org/docs 4*e7be843bSPierre Pronchery 5*e7be843bSPierre ProncheryGithub: https://github.com/openssl/openssl 6*e7be843bSPierre Pronchery 7*e7be843bSPierre ProncheryOpenSSL Wiki: https://github.com/openssl/openssl/wiki 8*e7be843bSPierre Pronchery 9*e7be843bSPierre ProncheryOriginal Simple Server: https://github.com/openssl/openssl/wiki/Simple_TLS_Server 10*e7be843bSPierre Pronchery 11*e7be843bSPierre Pronchery--------------------------------------------------------------- 12*e7be843bSPierre Pronchery 13*e7be843bSPierre ProncheryGenerate self signed cert and key 'pem' files (good for 10 years): 14*e7be843bSPierre Pronchery 15*e7be843bSPierre Proncheryopenssl req -newkey rsa:4096 -x509 -sha256 -days 3650 -nodes -out cert.pem -keyout key.pem 16*e7be843bSPierre Pronchery 17*e7be843bSPierre ProncheryYou can just hit carriage returns to accept the default values, except for "Common Name"; you 18*e7be843bSPierre Proncheryshould enter 'localhost', or an actual hostname. 19*e7be843bSPierre Pronchery 20*e7be843bSPierre ProncheryThe same keys can be used for both communicating instances; same or different machines. 21