{"id":4040,"date":"2019-04-02T14:21:04","date_gmt":"2019-04-02T05:21:04","guid":{"rendered":"https:\/\/east19-mikas.com\/?page_id=4040"},"modified":"2019-04-02T14:21:04","modified_gmt":"2019-04-02T05:21:04","slug":"ssl-settei2","status":"publish","type":"page","link":"https:\/\/east19-mikas.com\/mpat\/?page_id=4040","title":{"rendered":"\u30b5\u30a4\u30c8\u306eSSL\u5316"},"content":{"rendered":"<div class=\"main2\">\u30b5\u30a4\u30c8\u3092SSL\u5316\u3059\u308b\uff08\u81ea\u5df1\u7f72\u540d\uff09<\/div>\n<h2>SSL\u81ea\u5df1\u8a3c\u660e\u66f8\u306e\u4f5c\u6210<\/h2>\n<p>\u516c\u958b\u3059\u308b\u524d\u306b\u30b5\u30a4\u30c8\u3092SSL\u3067\u4f5c\u6210\u3057\u3066\u304a\u304f\u3068\u3001\u516c\u958b\u4f5c\u696d\u304c\u697d\u306b\u306a\u308a\u307e\u3059\u3002<br \/>\n\u305d\u306e\u305f\u3081\u306e\u958b\u767a\u3092SSL\/TLS\u3067\u884c\u3048\u308b\u3088\u3046\u306b\u81ea\u5df1\u7f72\u540d\u306e\u8a3c\u660e\u66f8\u3092\u4f5c\u6210\u3059\u308b\u65b9\u6cd5\u3067\u3059\u3002<\/p>\n<h3>\u8a3c\u660e\u66f8\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210\u3059\u308b\u5834\u6240\u306b\u79fb\u52d5\u3057\u307e\u3059<\/h3>\n<pre class=\"d2\">\n# <span class=\"cylo\">mkdir tmp<\/span>\n# <span class=\"cylo\">cd tmp<\/span>\n<\/pre>\n<h3>\u79d8\u5bc6\u9375\u4f5c\u6210<\/h3>\n<pre class=\"d2\">\n# <span class=\"cylo\">openssl genrsa -out server.passkey 2048<\/span>\nGenerating RSA private key, 2048 bit long modulus\n..........+++\n..................................+++\ne is 65537 (0x10001)\n<\/pre>\n<p>\u3053\u306e\u30d1\u30b9\u30d5\u30ec\u30fc\u30ba\u6709\u308a\u306e\u9375\u306e\u5834\u5408\u3001Apache\u306b\u8a2d\u5b9a\u3057\u3066\u3044\u308b\u5834\u5408\u3001<br \/>\nApache \u30c7\u30fc\u30e2\u30f3\u306e\u8d77\u52d5\u6bce\u306b\u30d1\u30b9\u30d5\u30ec\u30fc\u30ba\u3092\u805e\u304b\u308c\u307e\u3059\u3002<\/p>\n<h3>\u79d8\u5bc6\u9375\u3092\u89e3\u9664\u3057\u3066\u304a\u304d\u307e\u3059<\/h3>\n<pre class=\"d2\">\n# <span id=\"yelo\">openssl rsa -in server.passkey -out server.key<\/span>\n<\/pre>\n<h3>CSR\u30d5\u30a1\u30a4\u30eb\u4f5c\u6210<\/h3>\n<p>\u4e0a\u8a18\u3067\u4f5c\u6210\u3057\u305f\u79d8\u5bc6\u9375\u3092\u5143\u306bCSR\u30d5\u30a1\u30a4\u30eb\u3092\u4f5c\u6210\u3057\u307e\u3059\u3002<\/p>\n<pre class=\"d2\">\n# <span class=\"cylo\">openssl req -new -key server.key -out server.csr<\/span>\n<\/pre>\n<p>\u5b9f\u884c\u5f8c\u3001\u4e0b\u306e\u69d8\u306b\u5bfe\u8a71\u5f62\u5f0f\u3067\u5165\u529b\u3092\u6c42\u3081\u3089\u308c\u308b\u306e\u3067\u5165\u529b\u3057\u307e\u3059\u3002<\/p>\n<pre class=\"d2\">\nCountryName (2 letter code) [GB]:  <span id=\"gylo\">JP <\/span>\nState orProvince Name (full name) [Berkshire]:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc<\/span>\nLocalityName (eg, city) [Newbury]:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc <\/span>\nOrganizationName (eg, company) [My Company Ltd]:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc<\/span>\nOrganizationalUnit Name (eg, section) []:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc<\/span>\nCommonName (eg, your name or your server's hostname) []: <span id=\"gylo\">east19-mikas.com<\/span>\nEmailAddress []:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc <\/span>\n\nPleaseenter the following 'extra' attributes\nto besent with your certificate request\nAchallenge password []:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc <\/span>\nAnoptional company name []:  <span class=\"cylo\">\u7a7a\u30a8\u30f3\u30bf\u30fc <\/span>\n<\/pre>\n<h3>\u81ea\u5df1\u7f72\u540d\u8a3c\u660e\u66f8\u4f5c\u6210<\/h3>\n<p>\u901a\u5e38\u306f\u4e0a\u8a18\u3067\u4f5c\u6210\u3057\u305f CSR \u30d5\u30a1\u30a4\u30eb\u3092 SSL \u8a3c\u660e\u66f8\u767a\u884c\u4f1a\u793e\u306b\u9001\u3063\u3066 SSL \u8a3c\u660e\u66f8\u3092\u767a\u884c\u3057\u3066\u3082\u3089\u3046\u306e\u3067\u3059\u304c\u3001\u5358\u306b\u6697\u53f7\u5316\u901a\u4fe1\u3092\u884c\u3044\u305f\u3044\u5834\u5408\u306f\u81ea\u4f5c\u51fa\u6765\u307e\u3059\u3002<br \/>\n\u3044\u308f\u3086\u308b\u81ea\u5df1\u7f72\u540d SSL \u8a3c\u660e\u66f8\u306e\u4f5c\u6210\u3067\u3059\u3002<\/p>\n<pre class=\"d2\">\n# <span class=\"cylo\">openssl x509 -in server.csr -out server.crt -req -signkey server.key -days 3650<\/span>\nSignature ok\nsubject=\/C=JP\/L=Default City\/O=Default Company Ltd\/CN=east19-mikas.com\nGetting Private key\n<\/pre>\n<p>\u203b\u4f8b\u3067\u306f\u6709\u52b9\u671f\u9650\u306f\u300c3650\u300d\u65e5\u3067\u3059\u3002<\/p>\n<h3>\u30d5\u30a1\u30a4\u30eb\u3092\u79fb\u52d5\u3057\u307e\u3059<\/h3>\n<p>\u4f5c\u6210\u3057\u305fSSL\u8a3c\u660e\u66f8\u30d5\u30a1\u30a4\u30eb\u306f\u6240\u5b9a\u306e\u5834\u6240\u306b\u79fb\u52d5\u3057\u307e\u3059\u3002<br \/>\n\u307e\u305f\u3001\u79fb\u52d5\u3057\u305f\u30d5\u30a1\u30a4\u30eb\u306e\u30d1\u30fc\u30df\u30c3\u30b7\u30e7\u30f3\u3092\u5909\u66f4\u3057\u3001csr\u30d5\u30a1\u30a4\u30eb\u306f\u524a\u9664\u3057\u307e\u3059\u3002<\/p>\n<pre class=\"d2\">\n# <span class=\"cylo\">mv -i server.crt \/etc\/pki\/tls\/certs\/<\/span>\n# <span class=\"cylo\">mv -i server.key \/etc\/pki\/tls\/private\/<\/span>\n# <span class=\"cylo\">chmod 600 \/etc\/pki\/tls\/certs\/server.crt<\/span>\n# <span class=\"cylo\">chmod 600 \/etc\/pki\/tls\/private\/server.key<\/span>\n# <span class=\"cylo\">rm server.csr<\/span>\n<\/pre>\n<h3>Apache\u3067SSL\u8a3c\u660e\u66f8\u95a2\u9023\u30d5\u30a1\u30a4\u30eb\u3092\u914d\u7f6e\u3057\u8a2d\u5b9a\u3057\u307e\u3059<\/h3>\n<pre class=\"d2\">\n# <span class=\"cylo\">vi \/etc\/httpd\/conf.d\/ssl.conf<\/span>\n60\u884c\u76ee\nServerName <span id=\"gylo\">east19-mikas.com:443<\/span>\n\n75\u884c\u76ee\nSSLProtocol -all <span id=\"gylo\">+TLSv1 +TLSv1.1 +TLSv1.2<\/span>\n\n100\u884c\u76ee\nSSLCertificateFile <span id=\"gylo\">\/etc\/pki\/tls\/certs\/server.crt<\/span>\n\n107\u884c\u76ee\nSSLCertificateKeyFile <span id=\"gylo\">\/etc\/pki\/tls\/private\/server.key<\/span>\n\n116\u884c\u76ee\n#SSLCertificateChainFile \/etc\/pki\/\n<\/pre>\n<p>\u8a2d\u5b9a\u3092\u7d42\u308f\u3063\u305f\u3089Apche\u3092\u518d\u8d77\u52d5\u3057\u307e\u3059\u3002<\/p>\n<h3>Apache\u306e\u518d\u8d77\u52d5<\/h3>\n<pre class=\"d2\">\n# <span class=\"cylo\">systemctl restart httpd<\/span>\n<\/pre>\n<p id=\"dosakkn\">&nbsp;<\/p>\n<h2>\u52d5\u4f5c\u78ba\u8a8d<\/h2>\n<p>\u30d6\u30e9\u30a6\u30b6\u3067\u30b5\u30a4\u30c8\u306bhttps\u3067\u30a2\u30af\u30bb\u30b9\u3057\u3066\u307f\u307e\u3059\u3002<br \/>\nFiaFox\u306e\u5834\u5408\u306f\u8b66\u544a\u304c\u51fa\u3066\u3001\u3059\u3050\u306b\u306f\u8868\u793a\u3057\u307e\u305b\u3093\u306e\u3067\u3001\u8a2d\u5b9a\u5909\u66f4\u3059\u308b\u5fc5\u8981\u304c\u3042\u308a\u307e\u3059\uff08FirFox\u306e\u4f8b\uff09<br \/>\n\u203b\u8b66\u544a\u306f\u6700\u521d\u306e\u4e00\u56de\u3060\u3051\u3067\u3059\u3002\u4f8b\u5916\u3068\u3057\u3066\u8a31\u53ef\u3092\u3059\u308c\u3070\u3001\u4ee5\u964d\u306f\u3053\u306e\u8b66\u544a\u306f\u51fa\u3066\u304d\u307e\u305b\u3093\u3002<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/east19-mikas.com\/mput\/wp-content\/uploads\/2019\/04\/ssl-keikoku1.jpg\" alt=\"\" width=\"700\" height=\"541\" class=\"alignleft size-full wp-image-4728\" style=\"float:none;\" \/><br \/>\n\u8a73\u7d30\u21d2\u5371\u967a\u6027\u3092\u627f\u77e5\u3067\u5b9f\u884c\u30fb\u30fb\u30fb\u3092\u9078\u629e\u3059\u308b\u3068\u3001\u4ee5\u5f8c\u306f\u3001\u3053\u306e\u8b66\u544a\u306f\u51fa\u307e\u305b\u3093\u3002<br \/>\n<img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/east19-mikas.com\/mput\/wp-content\/uploads\/2019\/04\/ssl-keikoku2.jpg\" alt=\"\" width=\"700\" height=\"530\" class=\"alignleft size-full wp-image-4729\" style=\"float:none;\" \/><br \/>\n\u4ee5\u4e0a\u3001\u81ea\u5df1\u7f72\u540d\u306eSSL\u8a3c\u660e\u66f8\u306e\u4f5c\u6210\u65b9\u6cd5\u3067\u3057\u305f\u3002\u6b63\u5f0f\u306a\u8a8d\u8a3c\u5c40\u306e\u8a3c\u660e\u66f8\u306e<a href=\"https:\/\/east19-mikas.com\/mput\/?page_id=2126\">\u4f5c\u6210\u65b9\u6cd5\u306f\u3053\u3061\u3089\u3067\u3059\u30fb\u30fb\u30fb<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u30b5\u30a4\u30c8\u3092SSL\u5316\u3059\u308b\uff08\u81ea\u5df1\u7f72\u540d\uff09 SSL\u81ea\u5df1\u8a3c\u660e\u66f8\u306e\u4f5c\u6210 \u516c\u958b\u3059\u308b\u524d\u306b\u30b5\u30a4\u30c8\u3092SSL\u3067\u4f5c\u6210\u3057\u3066\u304a\u304f\u3068\u3001\u516c\u958b\u4f5c\u696d\u304c\u697d\u306b\u306a\u308a\u307e\u3059\u3002 \u305d\u306e\u305f\u3081\u306e\u958b\u767a\u3092SSL\/TLS\u3067\u884c\u3048\u308b\u3088\u3046\u306b\u81ea\u5df1\u7f72\u540d\u306e\u8a3c\u660e\u66f8\u3092\u4f5c\u6210\u3059\u308b\u65b9\u6cd5\u3067\u3059\u3002 \u8a3c\u660e\u66f8\u30d5\u30a1 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"parent":1824,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"class_list":["post-4040","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=\/wp\/v2\/pages\/4040","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4040"}],"version-history":[{"count":0,"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=\/wp\/v2\/pages\/4040\/revisions"}],"up":[{"embeddable":true,"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=\/wp\/v2\/pages\/1824"}],"wp:attachment":[{"href":"https:\/\/east19-mikas.com\/mpat\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4040"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}