Security Spy SSL Certificate Buying and Installing
The Security Spy comes with a built-in support for the https that allows you to be able to set up an encrypted web connection within your Security Spy server. To set up the https server, you will need an SSL Certificate. For some web servers, the process can be a bit complicated but Security Spy has made everything easier for you. So refer below for the Security Spy SSL Certificate buying and installing process.
Open the Terminal
The first step is to open the terminal and then go through the Security Spy folder. You will find the terminal application right on the Application and Utilities folder. Open this folder and then type the following lines – cd Documents, cd SecuritySpy. You can simply copy and paste this instead of typing.
Create a Private Key
Next, you need to create a private key. To do this, simply copy and paste the following to the Terminal -openssl genrsa -out server.key 2048. This will create a 2048 bit private key file that will be called the server.key. This file is very important and you should keep this safe. Thus, creating a backup of this file is recommended. If you lose this file, you can no longer make use of the certificate that you have purchased.
Create a Certificate Signing Request
To create a CSR or Certificate Signing Request, simply copy this to the terminal – openssl req -new -key server.key -out server.csr. A file with the server.csr file name will then be created and this is what you need to give to the certificate authority so they can create your certificate. You will then be asked several other details and you must enter all information accurately.
On this stage, it is important to enter the host name of your server if you will be asked for the Common Name. For instance, if you make use of the Dynamic DNS feature of Security Spy to give you the host name “myserver.viewcam.me,” then this is what you have to enter. You might also be asked for a password as well as the company name which is optional, so you can leave this blank.
Send the CSR to the Certificate Authority
As soon as you are done with the Certificate Signing Request, your next step is to send this to the Certificate Authority. There are lots of certificate authorities that you can use. Usually, you will need to have a basic domain validation certificate. As soon as you have this, you will be asked to provide the CSR. Some of the certificate authorities will ask you to submit the server.csr file that you have created on the previous step.
Installing the Certificate
As soon as the order has been approved, you will be provided with your new certificate, along with a root certificate, as well as one or more intermediate certificates. You need to copy all these certificate files to the Security Spy folder that is within the Documents folder. Rename your server certificate with “server.crt” file in order to identify your server. After that, quit and then re open the Security Spy and you will then see a verified web server connection with “https” right within your browser.