Has anyone done this? Sadly there is not much information out about this. I have an ssl cert from Namecheap. I've tried converting to a pkcs12 but it won't work via Openssl on windows. I'm not even sure that is the right format other than a tutorial located http://www.richgrundy.com/blog/setting- ... -subsonic/ which is for a linux install.
I would appreciate any clues on how this works or a tutorial would be even better. It's strange to me that subsonic.org's FAQ has a reference but is super vague.
Thanks
SSL Certificate and Windows 8.1
Moderator: moderators
5 posts
• Page 1 of 1
SSL Certificate and Windows 8.1
by zeroth » Sun Apr 02, 2017 11:36 pm
- zeroth
- Posts: 50
- Joined: Sat Jan 17, 2015 2:56 pm
Re: SSL Certificate and Windows 8.1
by b.bassett » Tue May 09, 2017 5:28 pm
Hi zeroth,
Did you get it figured out? I run Subsonic on Windows Server 2012 and use IIS to handle the Certificates. You can install IIS on Windows 8.1 and use that to handle the certificates then use URL rewrite. If you have any questions or would like to know how I do it, let me know and I'd be happy to help.
Did you get it figured out? I run Subsonic on Windows Server 2012 and use IIS to handle the Certificates. You can install IIS on Windows 8.1 and use that to handle the certificates then use URL rewrite. If you have any questions or would like to know how I do it, let me know and I'd be happy to help.
- b.bassett
- Posts: 9
- Joined: Thu Jan 19, 2017 10:51 pm
Re: SSL Certificate and Windows 8.1
by zeroth » Thu Jul 20, 2017 8:19 pm
sorry I've been busy on other things...real life. That is an interesting idea. I might look into that. I'll definitely follow up and hit you up if I any issues.
- zeroth
- Posts: 50
- Joined: Sat Jan 17, 2015 2:56 pm
Re: SSL Certificate and Windows 8.1
by Exrace » Sat Jul 22, 2017 2:35 pm
Don't forget about https://letsencrypt.org/
- Exrace
- Posts: 218
- Joined: Thu Nov 11, 2010 5:02 am
Re: SSL Certificate and Windows 8.1
by josquin » Sun Nov 18, 2018 4:41 pm
Hi there,
I'm gonna answer here it is more appropriate.
First of all i'm not familiar with windows specifics, maybe someone could correct or enhanced my answer.
Whatever I'll try to explain the basics steps.
1. Get a certificate
a certificate is a proof, signed by someone of trust, that you are the guy you say you are. We don't need it to encrypt things, we need it for your browser to get happy.
To get one you can:
Try to find something that match the prerequisite with Windows 8. Before to download anything check the .Net framework versions available on your platform. Powershell version.. etc. Note that we do not need IIS integration, Subsonic integrated his own webserver. We only want the certificate generation functionality.
GUI version could be attractive but imho it's a trap. We need very simple things that can be accomplished in one line (with eventually useful error messages). GUI will probably be has simple to manipulate has a panel control of a nuclear power plant, full of bugs, with no error report. Whatever, its up to you and in anyway.. you have to get it done.
2. Get it in something useful
Now that we got the cert we need to make it usable for us. As you already know it is the pks12 thing.
Multiples tutos to do that. This one looks good https://www.tbs-certificates.co.uk/FAQ/en/288.html (openssl)
Note that you really don't want to use online converters, doing so is equal to give them your certificate.
I mean your private key is private, really private. No one has to access it.
Ever.
3. Get your cert in subsonic
To do so we need to prepare and package the cert the java way. (keytool is provided with java and can be find @ something like C:\Program Files\Java\jdk1.8.0_121\bin)
then add it to subsonic
Restart subsonic and your done.
good luck
jo
I'm gonna answer here it is more appropriate.
First of all i'm not familiar with windows specifics, maybe someone could correct or enhanced my answer.
Whatever I'll try to explain the basics steps.
1. Get a certificate
a certificate is a proof, signed by someone of trust, that you are the guy you say you are. We don't need it to encrypt things, we need it for your browser to get happy.
To get one you can:
- pay
geotrust, verisign, globalsign, ... (yeaa those are the guys of trust we were talking about.. they love money very much, they really do and imho cannot really be trusted but... you know.. they are the browsers of your navigator.. so.. all that stuff is big family business. Ok. stop joking)
In this case, technically, it's your payment (name on the credit card) that authentify you.
Once done just download your cert files and your done - use something like letsencrypt (free)
We are talking about computers here, so technically we only want to be sure that the guy that own a domain is really the guy that brought the website you try to navigate to.
To do so, we make a request to lestsencrypt that will contact your server using public DNS record and check that a secret string is there.
Try to find something that match the prerequisite with Windows 8. Before to download anything check the .Net framework versions available on your platform. Powershell version.. etc. Note that we do not need IIS integration, Subsonic integrated his own webserver. We only want the certificate generation functionality.
GUI version could be attractive but imho it's a trap. We need very simple things that can be accomplished in one line (with eventually useful error messages). GUI will probably be has simple to manipulate has a panel control of a nuclear power plant, full of bugs, with no error report. Whatever, its up to you and in anyway.. you have to get it done.
2. Get it in something useful
Now that we got the cert we need to make it usable for us. As you already know it is the pks12 thing.
Multiples tutos to do that. This one looks good https://www.tbs-certificates.co.uk/FAQ/en/288.html (openssl)
Note that you really don't want to use online converters, doing so is equal to give them your certificate.
I mean your private key is private, really private. No one has to access it.
Ever.
3. Get your cert in subsonic
To do so we need to prepare and package the cert the java way. (keytool is provided with java and can be find @ something like C:\Program Files\Java\jdk1.8.0_121\bin)
- Code: Select all
keytool -importkeystore -srckeystore /your/cert/path/www.foobar.org.pkcs12 -srcstorepass subsonic -destkeystore /your/cert/path/subsonic.keystore -deststorepass mypass --srcstoretype PKCS12 -srcalias 1 -destalias subsonic
then add it to subsonic
- Code: Select all
zip /your/path/to/subsonic/subsonic-booter-jar-with-dependencies.jar /your/cert/path/subsonic.keystore
Restart subsonic and your done.
good luck
jo
-
josquin - Posts: 21
- Joined: Mon Jun 06, 2016 1:51 pm
5 posts
• Page 1 of 1
Who is online
Users browsing this forum: No registered users and 12 guests