-
Notifications
You must be signed in to change notification settings - Fork 125
/
ca.cnf
46 lines (38 loc) · 1.43 KB
/
ca.cnf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
[ req ]
default_bits = 2048
default_md = sha256
distinguished_name = req_dn
req_extensions = req_ext
string_mask = nombstr
prompt = no
[ req_dn ]
organizationName = fusioninventory.org
organizationalUnitName = test certification authority
commonName = test_ca
emailAddress = test@fusioninventory.org
[ req_ext ]
basicConstraints = CA:true
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid:always,issuer:always
[ ca ]
default_ca = default_ca
[ default_ca ]
dir = .
certificate = $dir/crt/ca.pem
private_key = $dir/key/ca.pem
certs = $dir/crt # Where the issued certs are kept
serial = $dir/serial # The current serial number
database = $dir/index.txt # database index file.
new_certs_dir = $dir/new # default place for new certs.
crl_dir = $dir/crl # Where the issued crl are kept
default_days = 3650 # how long to certify for
default_crl_days= 30 # how long before next CRL
default_md = sha256 # which md to use.
preserve = no # keep passed DN ordering
policy = ca_default_policy
copy_extensions = copy
[ ca_default_policy ]
organizationName = supplied
organizationalUnitName = supplied
commonName = supplied
emailAddress = supplied