phil-monroe/gen_signed_ssl_cert.sh

## gen_signed_ssl_cert.sh
#!/bin/bash
# Basic Config
certs_dir='certs'
num_bits=2048
serial_num=01
ca_name='ca'
server_name='server'

echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
echo '%% Creating Directory to hold Certs                                    %%'
echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
mkdir $certs_dir
cd $certs_dir
echo

echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
echo '%% Creating Certificate Authority                                      %%'
echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
# Create CA Key
openssl genrsa -des3 -out $ca_name.key $num_bits

# Create CA Cert
openssl req -new -x509 -days 365 -key $ca_name.key -out $ca_name.pem
echo

echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
echo '%% Creating server key and request for signing                         %%'
echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
openssl genrsa -des3 -out $server_name.key $num_bits
openssl req -new -key $server_name.key -out $server_name.csr
echo

echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
echo '%% Sign the certificate signing request                                %%'
echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
openssl x509 -req -days 365 -in $server_name.csr -CA $ca_name.pem -CAkey $ca_name.key -set_serial $serial_num -out $server_name.crt
echo

echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
echo '%% Strip Password from server key                                      %%'
echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
openssl rsa -in $server_name.key -out $server_name.key.insecure
mv $server_name.key $server_name.key.secure
cp $server_name.key.insecure $server_name.key
echo
	#!/bin/bash
	# Basic Config
	certs_dir='certs'
	num_bits=2048
	serial_num=01
	ca_name='ca'
	server_name='server'

	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	echo '%% Creating Directory to hold Certs %%'
	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	mkdir $certs_dir
	cd $certs_dir
	echo

	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	echo '%% Creating Certificate Authority %%'
	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	# Create CA Key
	openssl genrsa -des3 -out $ca_name.key $num_bits

	# Create CA Cert
	openssl req -new -x509 -days 365 -key $ca_name.key -out $ca_name.pem
	echo

	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	echo '%% Creating server key and request for signing %%'
	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	openssl genrsa -des3 -out $server_name.key $num_bits
	openssl req -new -key $server_name.key -out $server_name.csr
	echo

	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	echo '%% Sign the certificate signing request %%'
	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	openssl x509 -req -days 365 -in $server_name.csr -CA $ca_name.pem -CAkey $ca_name.key -set_serial $serial_num -out $server_name.crt
	echo

	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	echo '%% Strip Password from server key %%'
	echo '%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%'
	openssl rsa -in $server_name.key -out $server_name.key.insecure
	mv $server_name.key $server_name.key.secure
	cp $server_name.key.insecure $server_name.key
	echo