Installing the OpenSSL (TLS) Toolkit on a Windows Server OpenSSL is an implementation of the Transport Layer Security (TLS) cryptographic protocol used by many applications, most notably the Apache HTTP server. TLS’s predecessor was named Secure Sockets Layer (SSL), and is the name by which most people still refer to this protocol. OpenSSL contains a toolkit for generating certificates as well as a library of cryptography routines. The OpenSSL project provides source code only. In order to easily install OpenSSL in its already-compiled binary form, the OpenSSL project recommends that the OpenSSL for Windows package be used. The OpenSSL for Windows installer was created by a company called Shining Light Productions and comes in two flavors. The Light version contains just the binaries needed to run applications and compile programs against. The “full” version contains the same binaries in the Light version as well as 25 or so test programs. The OpenSSL for Windows Light installer will place the following binaries on your system:
Installation
ConfigurationTo make sure that OpenSSL has been installed properly, open a command prompt and change your directory to the directory you installed OpenSSL to, then type this command:cd/d c:\openssl-win64\bin You should see something like this: OpenSSL 1.0.1f 06 Jan 2014 Also, make sure that you are running the correct openssl.exe program (i.e., make sure the program is not in another directory listed in your PATH ):where openssl If this command does not show the correct openssl.exe program then you may have to change your system’s PATH variable.Define Config VariableCreate the system environment variable OPENSSL_CONF to point to the config file. For example, set it to:C:\OpenSSL-Win64\bin\openssl.cfg After setting this environment variable, verify that it is correct by opening a new command prompt and typing: type %OPENSSL_CONF% DirectoriesCreate directories for the SSL certificates. I like to create a directory named ssl , for example G:\admin\ssl , with two subdirectories:G:\admin\ssl\certs G:\admin\ssl\private .......... Next StepsRead the documentation for the openssl command line tool and the documentation for the library routines.References |
Windows > Windows Server >