Skip to content
/ ca.sh Public

Simple Certification Authority

License

View license
6 stars 6 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kirei/ca.sh

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
hsm-example
hsm-example
 
 
root-example
root-example
 
 
subca-example
subca-example
 
 
HSM.md
HSM.md
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ca.sh
ca.sh
 
 

Repository files navigation

Certification Authority

This repository contains a script for setting up simple X.509 certification authority using OpenSSL. It's really not that advanced, but it supports multiple CA levels as well as HSM.

If you want something with a graphical user interface, you might want to consider XCA.

Files

Scripts

  • ca.sh

Configuration files

  • openssl.conf
  • ca.conf

Examples

  • root-example (Root CA)
  • subca-example (Issuing CA)
  • hsm-example (Root CA with HSM)

Usage

ca.sh bootstrap
ca.sh issue CSR (generic|subca|host|client|xmpp) [hostname]
ca.sh revoke CERT
ca.sh crl

Examples

Bootstrap CA

ca.sh bootstrap

Generate Test CSR

openssl genrsa 2048 > test.key
openssl req -new -sha256 -key test.key -out test.csr

Sign CSR

ca.sh issue test.csr generic

Revoke Certificate

ca.sh revoke test.crt

Update CRL

ca.sh crl

About

Simple Certification Authority

Resources

Readme

License

View license
Activity
Custom properties

Stars

6 stars

Watchers

4 watching

Forks

6 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages