Skip to content

Instantly share code, notes, and snippets.

@mkocikowski

mkocikowski/ca.cnf

Last active May 19, 2016 19:07
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save mkocikowski/eeec3392e215e17e541f2dac40166292 to your computer and use it in GitHub Desktop.
Save mkocikowski/eeec3392e215e17e541f2dac40166292 to your computer and use it in GitHub Desktop.
Download ZIP
openssl CA configuration file
Raw
ca.cnf
[ ca ]
default_ca = ca_default
[ ca_default ]
base_dir = $ENV::HOME/.ssh
certificate = $base_dir/datapipe-ca.crt
copy_extensions = copy
database = $base_dir/index.txt
default_days = 365
default_md = sha256
new_certs_dir = $base_dir
policy = signing_policy
private_key = $base_dir/datapipe-ca.key
serial = $base_dir/serial.txt
unique_subject = no
[ signing_policy ]
commonName = supplied
[ v3_server ]
authorityKeyIdentifier=keyid,issuer
basicConstraints = critical,CA:FALSE
extendedKeyUsage = critical,serverAuth
keyUsage = digitalSignature, keyEncipherment
subjectKeyIdentifier=hash
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment