Development
openssl req -days 90 -out domena.cz.csr -sha256 -new -newkey rsa:2048 -nodes -keyout domena.cz.key
cp domena_cz domena.cz cat COMODORSADomainValidationSecureServerCA.crt >> domena.cz.crt cat COMODORSAAddTrustCA.crt >> domena.cz.crt cat AddTrustExternalCARoot.crt >> domena.cz.crt
mv domena.cz.key domena.cz.crt /etc/nginx/ssl/ chmod 0400 /etc/nginx/ssl/* chown nginx.nginx -R /etc/nginx/ssl
restorecon -Rv /etc/nginx/ssl
vim /etc/nginx/conf.d/domena.cz
http://nginx.org/en/docs/http/configuring_https_servers.html
service nginx restart
openssl s_client -connect domain.cz:443