summaryrefslogtreecommitdiff
path: root/openvpn/easy-rsa/build-key-server
diff options
context:
space:
mode:
Diffstat (limited to 'openvpn/easy-rsa/build-key-server')
-rwxr-xr-xopenvpn/easy-rsa/build-key-server22
1 files changed, 22 insertions, 0 deletions
diff --git a/openvpn/easy-rsa/build-key-server b/openvpn/easy-rsa/build-key-server
new file mode 100755
index 0000000..30dc41e
--- /dev/null
+++ b/openvpn/easy-rsa/build-key-server
@@ -0,0 +1,22 @@
+#!/bin/sh
+
+#
+# Make a certificate/private key pair using a locally generated
+# root certificate.
+#
+# Explicitly set nsCertType to server using the "server"
+# extension in the openssl.cnf file.
+
+if test $# -ne 1; then
+ echo "usage: build-key-server <name>";
+ exit 1
+fi
+
+if test $KEY_DIR; then
+ cd $KEY_DIR && \
+ openssl req -days 3650 -nodes -new -keyout $1.key -out $1.csr -extensions server -config $KEY_CONFIG && \
+ openssl ca -days 3650 -out $1.crt -in $1.csr -extensions server -config $KEY_CONFIG && \
+ chmod 0600 $1.key
+else
+ echo you must define KEY_DIR
+fi