-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserver.conf
47 lines (42 loc) · 1.76 KB
/
server.conf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
# TLS server certificate request
# This file is used by the openssl req command. The subjectAltName cannot be
# prompted for and must be specified in the SAN environment variable.
[ req ]
default_bits = 2048 # RSA key size
encrypt_key = no # Protect private key
default_md = sha1 # MD to use
utf8 = yes # Input is UTF-8
string_mask = utf8only # Emit UTF-8 strings
prompt = no # Prompt for DN
distinguished_name = server_dn # DN template
req_extensions = server_reqext # Desired extensions
[ server_dn ]
0.domainComponent = "org"
1.domainComponent = "cheese"
0.organizationName = "Cheese"
1.organizationName = "Cheese 2"
0.organizationalUnitName = "Simple Signing Section"
1.organizationalUnitName = "Simple Signing Section 2"
0.commonName = "*.cheese.org"
1.commonName = "*.cheese.com"
0.countryName = "FR"
1.countryName = "US"
0.localityName = "TOULOUSE"
1.localityName = "LYON"
0.stateOrProvinceName = "Cheese org state"
1.stateOrProvinceName = "Cheese com state"
0.emailAddress = "[email protected]"
1.emailAddress = "[email protected]"
[ server_reqext ]
keyUsage = critical,digitalSignature,keyEncipherment
extendedKeyUsage = serverAuth,clientAuth
subjectKeyIdentifier = hash
subjectAltName = @alt_names
[alt_names]
DNS.1 = *.cheese.org
DNS.2 = *.cheese.net
DNS.4 = *.cheese.com
IP.1 = 10.0.1.0
IP.2 = 10.0.1.2
email.1 = [email protected]
email.2 = [email protected]