diff options
Diffstat (limited to 'openvpn/easy-rsa/build-key-server')
-rwxr-xr-x | openvpn/easy-rsa/build-key-server | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/openvpn/easy-rsa/build-key-server b/openvpn/easy-rsa/build-key-server new file mode 100755 index 0000000..30dc41e --- /dev/null +++ b/openvpn/easy-rsa/build-key-server @@ -0,0 +1,22 @@ +#!/bin/sh + +# +# Make a certificate/private key pair using a locally generated +# root certificate. +# +# Explicitly set nsCertType to server using the "server" +# extension in the openssl.cnf file. + +if test $# -ne 1; then + echo "usage: build-key-server <name>"; + exit 1 +fi + +if test $KEY_DIR; then + cd $KEY_DIR && \ + openssl req -days 3650 -nodes -new -keyout $1.key -out $1.csr -extensions server -config $KEY_CONFIG && \ + openssl ca -days 3650 -out $1.crt -in $1.csr -extensions server -config $KEY_CONFIG && \ + chmod 0600 $1.key +else + echo you must define KEY_DIR +fi |