apache生成自签名ssl证书配置Apache-https

配置环境：win7 64位;httpd-2.4.26-x64-vc14

教程如下:

生成自签证书

1.生成密钥
openssl genrsa -out test.com.key 2048 

2.生成证书请求文件，运行之后会出现一大堆要输入的东西，输入之后就生成.csr的文件了
openssl req -new -key test.com.key -out test.com.csr

 You are about to be asked to enter information that will be incorporated
 into your certificate request.
 What you are about to enter is what is called a Distinguished Name or a DN.
 There are quite a few fields but you can leave some blank
 For some fields there will be a default value,
 If you enter '.', the field will be left blank.
 -----
 Country Name (2 letter code) [XX]:CN
 State or Province Name (full name) []:Beijing
 Locality Name (eg, city) [Default City]:Beijing
 Organization Name (eg, company) [Default Company Ltd]:test.com
 Organizational Unit Name (eg, section) []:test
 Common Name (eg, your name or your server's hostname) []:www.test.com

Email Address []:root@test.com
Please enter the following 'extra' attributes
 to be sent with your certificate request
 A challenge password []:123456

An optional company name []:test

3.生成证书crt
openssl x509 -req -days 365 -in test.com.csr -signkey test.com.key -out test.com.crt

4.复制文件到相应的目录
拷贝test.com.crt  test.com.key   "${SRVROOT}/conf/" //apache安装目录

5.修改配置文件./conf/extra/httpd-ssl.conf,整个文件内容如下
<VirtualHost *:443>
    DocumentRoot "D:/Workspace"
    ServerName www.test.com
    <Directory "D:/Workspace">
    AllowOverride all
    </Directory>
    SSLEngine on
    SSLCertificateFile "${SRVROOT}/conf/test.com.crt"
    SSLCertificateKeyFile "${SRVROOT}/conf/test.com.key"
    SSLCipherSuite AES128-SHA:HIGH:MEDIUM:!aNULL:!MD5
    SSLHonorCipherOrder on
</VirtualHost>

6.修改httpd.conf支持https访问
找到 
#LoadModule ssl_module modules/mod_ssl.so 和 #Include conf/extra/httpd-ssl.conf，去掉前面的#号注释；

7.重启apache