X-Git-Url: https://robinkrens.nl/gitweb/?p=x509-shell-scripts;a=blobdiff_plain;f=certification-authority.sh;fp=certification-authority.sh;h=9bf1ce6270b672eb2890e7cf40ea9c210c7b32d6;hp=1b534f565a829904e7e71561ba51625d32e5a180;hb=e04860b438ee646fedbaa035dbc82e2642855710;hpb=43e9f0ef06471c389dc706d9ecbcb18a40d3c8b1

diff --git a/certification-authority.sh b/certification-authority.sh
index 1b534f5..9bf1ce6 100755
--- a/certification-authority.sh
+++ b/certification-authority.sh
@@ -1,9 +1,25 @@
+#!/bin/bash
+
+# create self-signed CA certificate
+# presumes standard directory of strongswan 
+
+#S_I="ipsec"
+
+#echo "question (read variable)"
+#read S_I
+
+VPN_COUNTRY="AUS"
+VPN_IP_ADDRESS="45.32.241.182"
+VPN_NAME="ROB-VPN-AUS"
+
+
+echo "Entering strongswan config directory..."
 cd /etc/strongswan/ipsec.d/
 strongswan pki --gen --type rsa --size 4096 --outform pem \
 	> private/strongswanKey.pem
 chmod 600 private/strongswanKey.pem
 strongswan pki --self --ca --lifetime 3650 \
 	--in private/strongswanKey.pem --type rsa \
-	--dn "C=JP, O=ROB-VPN-JP, CN=207.148.98.140" \
+	--dn "C=$VPN_COUNTRY, O=$VPN_NAME, CN=$VPN_IP_ADDRESS" \
 	--outform pem \
 	> cacerts/strongswanCert.pem