Generating and Installing a New Self-Signed SSL Certificate

Generate a self-signed certificate if you don't plan on sending your certificate to be signed by a Certified Authority (CA), or if you want to test your SSL implementation while waiting for the CA to sign your certificate.

A self-signed certificate is a temporary certificate that is valid for 365 days. Self-signed certificates are not meant to be used in your production environment. Users accessing your server are warned by their browser warn them that your server is not secure.

By default, IBM Aspera Shares uses a generated, self-signed certificate as a placeholder until you can install a certificate signed by authorities.

You can find the installed certificate at: C:\Program Files (x86)\Aspera\Enterprise Server\aspera_server_cert.pem.

Generate a self-signed certificate using openssl command, where key_name is the name of the unique key that you are creating and cert_name is the name of your certificate file:
> openssl x509 req -days 365 -in csr_name.csr -signkey key_name.key -out cert_name.crt