Creating a single .pem file for web server SSL

Solution 1

Depending on which type of certificate you have, go to https://certs.godaddy.com/Repository.go and download the appropriate intermediate certificate chain (one of the .crt files, most likely this one). Paste that into your PEM file along with your own certificate and key.

Solution 2

Your creation of the .pem file is fine. If it wasn't then HTTP server is unlikely to start.

Assuming that you have a GoDaddy root certificate in your browser's trusted certs, then the certificate that they have provided you is what's known as a "chained" certificate. This means that it hasn't been signed directly by their root. It is signed by an intermediatory CA which in itself is signed by the root.

In order for your browser to trust the chained certificate it needs to know of all certificates in the chain. In Apache this is accomplished with the SSLCertificateChainFile directive, which pushes the other certificates in the chain to the client during the SSL handshake process.

You'll need to find a substitute for this directive in Mongoose. The manual doesn't appear to indicate how. You may find that placing the chain certificate(s) at the end of the PEM to help.

Related videos on Youtube

11 : 04

OpenSSL Step By Step Tutorial | How to Generate Keys, Certificates & CSR Using OpenSSL

Tutorials Pedia

131

13 : 23

Create & sign SSL/TLS certificates with openssl

TECH SCHOOL

63

13 : 59

How to generate and use a SSL certificate in NodeJS

yoursTRULY

56

06 : 00

How to create a PEM file for HAProxy Configure SSL Certificate

ATOM

16

02 : 35

DevOps & SysAdmins: Creating a single .pem file for web server SSL (3 Solutions!!)

Roel Van de Paar

0

Author by

xyz

Updated on September 17, 2022