paulreece42/san cert with ca

## san cert with ca
## BEGIN san.cnf ##
[ req ]
default_bits       = 2048
distinguished_name = req_distinguished_name
req_extensions     = v3_req
prompt = no
[ req_distinguished_name ]
commonName                 = foo.bar
[ v3_req  ]
subjectAltName = @alt_names
[alt_names]
DNS.1   = bar.baz
IP.1    = 127.0.0.1
## END san.cnf ##

openssl req -out sslcert.csr -newkey rsa:2048 -nodes -keyout private.key -config san.cnf
openssl x509 -in sslcert.csr -out sslcert.crt -req -signkey /path/to/my/ca.key -days 3650 -extfile san.cnf -extensions v3_req
	## BEGIN san.cnf ##
	[ req ]
	default_bits = 2048
	distinguished_name = req_distinguished_name
	req_extensions = v3_req
	prompt = no
	[ req_distinguished_name ]
	commonName = foo.bar
	[ v3_req ]
	subjectAltName = @alt_names
	[alt_names]
	DNS.1 = bar.baz
	IP.1 = 127.0.0.1
	## END san.cnf ##

	openssl req -out sslcert.csr -newkey rsa:2048 -nodes -keyout private.key -config san.cnf
	openssl x509 -in sslcert.csr -out sslcert.crt -req -signkey /path/to/my/ca.key -days 3650 -extfile san.cnf -extensions v3_req