Requesting for certificate from linux server

openssl req -new -days 365  -out newreq.pem

copy the request file to the CA server.

on CA server.

openssl ca -config /etc/ssl/openssl.cnf -policy policy_anything -out newcert.pem -infiles demoCA/newreq.pem

the index file is incremented.

edit newcert.pem and remove the private key part.

copy the newcert.pem to linux server.

Copy the linux private key to

cp ~/tmp/privkey.pem /etc/httpd/conf/ssl.key/server.key

copy the public key to

cp ~/tmp/newcert.pem /etc/httpd/conf/ssl.crt/server.crt

restart httpd

if you are asked the passphrase during restart, then do this to the private key.

openssl rsa -in /etc/httpd/conf/ssl.key/server.key -out ~/server.key