1024 Bit CA SSL certs are no longer available. My 7.2 server runs fine.
It depends on the version of OpenSSL that was running on Serv-U at that time. According to the release notes, the version of OpenSSL for Serv-U 7.2.0 was v0.9.8h.
I have no idea if v0.9.8h does or does not support 2048 bit SSL. If it does, how do I create a 2048 bit CSR? Perhaps a command line utility? There is no key-length drop-down on the page.
Surely I am not prohibited from getting a CA SSL Certificate for this server?? Am I?
Thanks, Shawn
1) Get OpenSSL for Windows (a great command-line utility) here: http://slproweb.com/products/Win32OpenSSL.html
2) Follow instructions for generating a 2048 certificate, key and CSR like these: http://www.networksolutions.com/support/csr-for-apache-with-mod-ssl-openssl/ (note the "rsa:2048" argument)
3) Go to your favorite CA and get your signed cert
4) Apply them all to Serv-U.
(I've done this MANY times - works great!)
-=-=-=-=-=-=-=-
Get Certified File Transfer Professional (CFTP) certified today at http://www.cftpcert.com.
These instructions look like linux… I am installing on Windows server with Serv-u 7.2.0
Got it… Had to Set the CFG file path… worked like a charm
I have my Signed .cer files now. Are there detailed instructions for installation somewhere? Step 4 says apply them all…. How?
4 Files….
1. The csr I created yesterday
2. Ssl_certificate.cer >from Thawte
3. IntermediateCA.cer >from Thawte
4. crossRootCA.cer >from Thawte
I set the Certificate path to the new ssl_certificate.cer location. But the browser shows “Untrusted Connection” and to view the certificate shows Undefined on all the important details.
1) Ignore the CSR...you already have the "Signed Certificate" that you Requested
2) Choose this as your certificate
3) Choose this as your CA certificate
4) You shouldn't need this...the intermediate CA should be enough
5) Make sure you select the key file that was generated when you created your CSR and the original cert
