Skip to content

dalt74/microca

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
main
main
 
 
.gitignore
.gitignore
 
 
readme.txt
readme.txt
 
 

Repository files navigation

Simple script to perform basic CA tasks

1. Clone repository
   $ https://github.com/dalt74/microca.git

2. Prepare Micro-CA directory
   $ main/action prepare

   This will create:
   * openssl configuration - ./.openssl.cnf
   * MicroCA configuration - ./.config
   * openssl-compliant CA database - ./ca_dir/*

3. Change config ot configure your defaults
   Set CRL/cert lifetimes and default DN component values
   $ vi .config 

4. Generate root certificate
   $ main/action init

5. Generate request
   $ main/action req username username@domain.com

6. Sign request for a default lifetime
   $ main/action sign requests/username-*.csr

   or sign for 37 days
   $ main/action sign requests/username-*.csr 37

   The new certificate will be copied into <conf_dir>/certificates folder

   To add subjetcAltName extension into cert, use example syntax:

   SAN_VALUE=DNS.1:mydomain.com,DNS.2:*.mydomain.net,IP.1:127.0.0.1 main/action sign requests/filename.csr

7. Revoke cert
   $ main/action revoke certificates/username-*.crt

8. Update CRL
   $ main/action crl
   $ cp crl.pem /some/path/where/you/need

Env wars:
CONF_DIR - specify path to CA directory
REQ_CERT_DAYS - set certificate lifetime while creating request

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages