WebSVN – sysadmin_scripts – Blame – /trunk/ssl_certs/openssl.cnf.sample

Rev	Author	Line No.	Line
179	rodolico	1	`[ req ]`
		2	`default_bits = 2048 # default key size`
		3	`default_md = sha256 # default message digest algorithm`
		4	`distinguished_name = req_distinguished_name # definition used for DN`
		5	`req_extensions = v3_req # go look at v3_req section for the extensions def`
		6	`prompt = no # do not ask questions, take defaults`
		7
		8	`[ req_distinguished_name ]`
		9	`# Required fields`
		10	`C = US`
		11	`ST = Texas`
		12	`# not required`
		13	`O = Example Corp`
		14	`L = Dallas`
		15	`OU = Headquarters`
		16	`CN = www.example.com`
		17	`emailAddress = info@example.com`
		18
		19	`[ v3_req ]`
		20	`keyUsage = critical, digitalSignature, keyEncipherment`
		21	`extendedKeyUsage = serverAuth, clientAuth`
		22	`subjectAltName = @alt_names # look for section [ alt_names ] for all the names`
		23	`basicConstraints = CA:FALSE`
		24	`# these are not used in our scenario`
		25	`# authorityKeyIdentifier = keyid,issuer`
		26	`#certificatePolicies = policies that govern the use of the certificate, useful in compliance scenarios`
		27	`#crlDistributionPoints = URLs for retrieving the CRL`
		28
		29	`# list of all names for the cert, filled in by makeCert if .ext file does`
		30	`# not exist`
		31	`[ alt_names ]`

Subversion Repositories sysadmin_scripts