Created
June 23, 2022 14:03
-
-
Save lulf/0e04ddc1e92d7d67351394ce21a6ff5d to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| HOST=${1:-"localhost"} | |
| echo "Generating CA key" | |
| openssl ecparam -genkey -name prime256v1 -noout -out ca-key-ec.pem | |
| openssl pkcs8 -topk8 -nocrypt -in ca-key-ec.pem -out ca-key.pem | |
| echo "Generating CA cert" | |
| openssl req -x509 -new -SHA256 -nodes -key ca-key.pem -days 3650 -out ca-cert.pem -batch | |
| echo "Generating server key" | |
| openssl ecparam -genkey -name prime256v1 -noout -out server-key-ec.pem | |
| openssl pkcs8 -topk8 -nocrypt -in server-key-ec.pem -out server-key.pem | |
| echo "Generating server CSR" | |
| openssl req -new -SHA256 -key server-key.pem -subj "/C=NO/ST=Hamar/L=Hamar/O=Global Security/OU=Holsetbakken/CN=${HOST}" -nodes -out server.csr -batch | |
| openssl req -in server.csr -noout -text | |
| echo "Press enter to continue..." | |
| read | |
| echo "Generating server cert" | |
| openssl x509 -req -SHA256 -days 365 -extfile v3.ext -in server.csr -CA ca-cert.pem -CAkey ca-key.pem -CAcreateserial -out server-cert.pem |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment