Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- DOMAIN="sdk.local"
- mkdir -p /artifacts/valid && cd /artifacts/valid
- openssl genrsa -out ca.key 2048
- openssl req -new -key ca.key -x509 -days 1825 -subj "/C=US/OU=sdk" -out ca.pem
- cp ca.pem ca.crt
- openssl genrsa -out ldapserver.key
- openssl req -new -key ldapserver.key -out ldapserver.csr \
- -subj "/CN=ldap.${DOMAIN}/C=US/OU=sdk" \
- -addext "subjectAltName=DNS:ldap.${DOMAIN},DNS:localhost,IP:127.0.0.1"
- DAYS_VALID=730
- openssl x509 -req -in ldapserver.csr -CA ca.pem -CAkey ca.key -CAcreateserial \
- -out ldapserver.pem -days ${DAYS_VALID} -extfile <(printf "subjectAltName=DNS:ldap.${DOMAIN},DNS:localhost,IP:127.0.0.1")
- echo $(( $(date +%s) + ${DAYS_VALID}*24*60*60 )) > /artifacts/expiry_timestamp
Advertisement
Add Comment
Please, Sign In to add comment
