You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
46 lines
1.2 KiB
Twig
46 lines
1.2 KiB
Twig
distinguished_name = req_distinguished_name
|
|
[ca]
|
|
default_ca=ca_default
|
|
[req_distinguished_name]
|
|
[v3_req]
|
|
[v3_ca]
|
|
[ca_default]
|
|
crl_extensions=crl_ext
|
|
unique_subject=no
|
|
private_key=storage/ca.key
|
|
certificate=storage/ca.crt
|
|
new_certs_dir=storage/certs/
|
|
database=storage/database
|
|
default_md=sha256
|
|
policy=policy_only_commonname
|
|
serial=storage/serial
|
|
crlnumber=storage/crl_serial
|
|
default_crl_days=1
|
|
[policy_only_commonname]
|
|
countryName = optional
|
|
stateOrProvinceName = optional
|
|
localityName = optional
|
|
organizationName = optional
|
|
organizationalUnitName = optional
|
|
commonName = supplied
|
|
emailAddress = optional
|
|
[req]
|
|
x509_extensions = client_ext
|
|
[server_ext]
|
|
basicConstraints = CA:FALSE
|
|
subjectKeyIdentifier=hash
|
|
authorityKeyIdentifier = keyid,issuer:always
|
|
extendedKeyUsage = serverAuth
|
|
keyUsage = digitalSignature,keyEncipherment
|
|
crlDistributionPoints = URI:http://{{ hostname }}/crl
|
|
[client_ext]
|
|
subjectKeyIdentifier=hash
|
|
basicConstraints = CA:FALSE
|
|
crlDistributionPoints = URI:http://{{ hostname }}/crl
|
|
[ca_ext]
|
|
basicConstraints = CA:TRUE
|
|
subjectKeyIdentifier=hash
|
|
crlDistributionPoints = URI:http://{{ hostname }}/crl
|
|
[crl_ext]
|
|
authorityKeyIdentifier=keyid:always
|