projects / x509-shell-scripts / blob
? search:


e3c5995a3cd9aa7a2877848991221947604bc7aa
[x509-shell-scripts] / server-certificate.sh
1 cd /etc/strongswan/ipsec.d/
2 strongswan pki --gen --type rsa --size 2048 \
3         --outform pem \
4         > private/vpnHostKey.pem
5 chmod 600 private/vpnHostKey.pem
6 strongswan pki --pub --in private/vpnHostKey.pem --type rsa | \
7         strongswan pki --issue --lifetime 730 \
8         --cacert cacerts/strongswanCert.pem \
9         --cakey private/strongswanKey.pem \
10         --dn "C=JP, O=ROB-VPN-JP, CN=207.148.98.140" \
11         --san 207.148.98.140 \
12         --flag serverAuth --flag ikeIntermediate \
13         --outform pem > certs/vpnHostCert.pem
simple shell scripts to make a CA, host and user keys