Creating your own CA for SSL encryption
I am planning on utilizing SSL internally in my LAN and, as part of the requirement (internal policy), it needs to be encrypted. I'm new to Web development and, of course, in one of my books I read that one can act as their own ROOT CA. How do I create my ROOT CA first prior to implementing SSL in Apache? Does it matter which part of the process goes first? Also, any suggested links in regards to SSL is greatly appreciated.
You will need a CA (either one of your own or a commercial CA) in order to create and sign your own certificates before you implement SSL in Apache. You can see instructions for creating your own CA here. The OpenSSL site also has an excellent FAQ and some documents on working with SSL.
This was first published in January 2006