06 January 2011

Create GoDaddy domain certificate

The idea is to create https domain name signed by godaddy. It's not complicated at all.
  1. Generate your certificate request
  2. # openssl genrsa -des3 -out alwayshere.net.key 2048
    Enter PEM pass phrase: this_is_secret Verifying password - Enter PEM pass hrase: this_is_secret

    # openssl req -new -key alwayshere.net.key -out alwayshere.net.csr
    Country Name (2 letter code) [GB]:CZ
    State or Province Name (full name) [Berkshire]:Brno
    Locality Name (eg, city) [Newbury]:Brno
    Organization Name (eg, company) [My Company Ltd]:Always Here
    Organizational Unit Name (eg, section) []:
    Common Name (eg, your name or your server's hostname) []:Silasi Stefan
    Email Address []:silasistefan@gmail.com
    Please enter the following 'extra' attributes to be sent with your certificate request A challenge password []:
    An optional company name []:

    And now you have the CSR - which is the file required by GoDaddy.

  3. Upload it to godaddy
  4. Login here and paste your CSR on your domain...
  5. Download and install the domain certificate
GoDaddy will generate your own certificate that you can download in a zip file and install...


  1. server {
    listen 443;
    ssl on;
    ssl_certificate /etc/ssl/alwayshere.net.crt;
    ssl_certificate_key /etc/ssl/alwayshere.net.key;

    server_name www.alwayshere.net;
    access_log /var/log/nginx/alwayshere-secure.log;
    location / {
    root /home/www.alwayshere.net/;
    index index.html index.php;

    Adjust the file names to match your certificate files:

    * ssl_certificate should be your primary certificate combined with the intermediate certificate that you made in the previous step (e.g. your_domain_name.crt).
    * ssl_certificate_key should be the key file generated when you created the CSR. (thank you source)

  2. very good comments here about how to generate GoDaddy certs for nginx...