Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- export KEY_CONFIG="$EASY_RSA/openssl-1.0.0.cnf"
- # Edit this variable to point to
- # your soon-to-be-created key
- # directory.
- #
- # WARNING: clean-all will do
- # a rm -rf on this directory
- # so make sure you define
- # it correctly!
- export KEY_DIR="$EASY_RSA/keys"
- # Issue rm -rf warning
- echo NOTE: If you run ./clean-all, I will be doing a rm -rf on $KEY_DIR
- # PKCS11 fixes
- export PKCS11_MODULE_PATH="dummy"
- export PKCS11_PIN="dummy"
- # Increase this to 2048 if you
- # are paranoid. This will slow
- # down TLS negotiation performance
- # as well as the one-time DH parms
- # generation process.
- export KEY_SIZE=1024
- # In how many days should the root CA key expire?
- export CA_EXPIRE=3650
- # In how many days should certificates expire?
- export KEY_EXPIRE=3650
- # These are the default values for fields
- # which will be placed in the certificate.
- # Don't leave any of these fields blank.
- export KEY_COUNTRY="someplanet"
- export KEY_PROVINCE="someprovince"
- export KEY_CITY="someplace"
- export KEY_ORG="someorg"
- export KEY_EMAIL="myunique@email.com"
- export KEY_EMAIL=mail@host.domain
- export KEY_CN=changeme
- export KEY_NAME=changeme
- export KEY_OU=changeme
- export PKCS11_MODULE_PATH=changeme
- export PKCS11_PIN=1234
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement