1.安裝 NGINX
1 |
yum -y install nginx |
2.建立 SSL 憑證存放目錄
1 |
mkdir /etc/nginx/ssl |
3.用 openssl 產生憑證
1 |
openssl req -new -x509 -sha256 -days 3650 -newkey rsa:2048 -keyout /etc/nginx/ssl/nginx.key -out /etc/nginx/ssl/nginx.crt -nodes -subj '/C=TW/ST=Taiwan/L=Taipei/O=demo org/OU=demo org unit/CN=demodomain123.com' |
4.設定 NGINX 的 憑證、私鑰路徑,監聽 HTTPS
路徑:/etc/nginx/nginx.conf
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 |
server { listen 80 default_server; listen [::]:80 default_server; listen 443 ssl; root /usr/share/nginx/html; index index.html index.htm; server_name demodmoain123.com; ssl_certificate /etc/nginx/ssl/nginx.crt; ssl_certificate_key /etc/nginx/ssl/nginx.key; location / { try_files $uri $uri/ =404; } } |
5.重啟 NGINX
1 |
service nginx restart |