Valid Ssl certificate in DiskStation

By
admin
17 December, 2011Posted in: Diskstation
StartSSL

 

To configure a valid SSL certificate; I used a free certificate "StartSSL Free"", StartCom.

The steps I followed to configure the certificate got them from the next page :

http://blog.deadcode.net/2011/05/02/adding-free-and-valid-ssl-certificate-to-diskstation-with-startssl-com/

1 – To access the page : https://www.startssl.com/?app=12

2 – Click on "Express Lane", to register :

Express Lane

3 – Fill out the registration form :

Formulario de Registro

4 – A verification email will be sent, with a code which you must enter in the next step.

5 – After entering the verification code, a Personal certificate will be installed in the Web browser,
      * It is recommended to perform a backup of the certificate.

6 – We will access the section "Control Panel"",  pulsaremos en "Auntenticate", and select the StartCom certificate.

Identificarse en StartSsl

7 – Click on "Validation Wizard", Select "Domain Name Validation", and click "Continue"" :

Validate Domain

8 – We will indicate the name of the domain you want to validate (does not support subdomains):

Domain Validation

9 – Select an email address, You will receive a verification code:

Domain Validation

10 – In the next step, Enter the verification code, I have received by mail.

Now, We must generate a private key and  a request for certificate, using OpenSsl, in my case uses a version for Windows :
http://code.google.com/p/openssl-for-windows/downloads/list

1 – Download Zip file : http://openssl-for-windows.googlecode.com/files/openssl-0.9.8k_WIN32.zip

2 – Unzip the contents in C:\OpenSSL

3 – Open the "system symbol"" in Windows ( Run / cmd ), and run the following commands :

CD C:\OpenSslbin
OpenSSL genrsa - des3 - out ssl.key 2048

OpenSsl

Enter a password, for the private key.

openssl rsa-in ssl.key - out ssl.nopp.key
openssl req - config "C":\"OpenSslopenssl. cnf"  -SHA1 - nodes - new - key ssl.key - out ssl.csr

OpenSsl

We enter the information asks us, and the fact most important "Common Name", which must be the name of the domino (or subdomain), so the are going to perform the Ssl certificate request.

 

Create the certificate at StartSsl

1- We are now back to enter in the page of StartSsl, and click on "Certicates Wizard", and select "Web Server SSL"…" :

Ssl Certificate

2 – In the next step, Click "Skip"" :

Ssl Certificate

3 – In the next step, We paste the contents of the file "ssl.csr"" :

Ssl Certificate

4 – In the page "Certificate Request Received", Click "Continue".

5 – In the page "Add Domain", We introduce the subdomain to which the certificate we want, EJ. SSL.mydomain.com.

6 – In the page "Ready Processing Certificate", Click "Continue".

7 – In the page "Save Certificate", copy the text of the certificate, and paste it in Notepad, and we kept it as /etc/httpd/conf/SSL.CRT/server.CRT.

* You can be, require an additional step
Instead of being able to download the certificate; won't an email indicating the approval of the certificate.

Upon receipt of the mail, We enter in the "Tool Box" section" and select the option "Raise Certificate":

"Click"Continue"", and now we can set the text of the certificate, and save it in a file named "/etc/httpd/conf/SSL.CRT/server.CRT".

 

Import the certificate on DiskStation

1 – Accedemos a la pagina de Administración de DiskStation.

2 – Open the Control Panel / Web services / Service / HTTP :

Importar Certificado Ssl

3 – Mark the Check "Enable HTTP connection"…", and click "Import certificate".

Importar Certificado Ssl

4 – In the private key, Select the file "ssl.nopp.key", and in the certificate the file "/etc/httpd/conf/SSL.CRT/server.CRT".

5 – Click "OK", and we have ready our valid SSL certificate, in our Synology disk.

Tags: , , ,

About admin