linux cfssl self-signed certificate

Others 2021-01-26 08:06:55 views: null

linux cfssl self-signed certificate

1. Installation

curl -s -L -o /usr/bin/cfssl https://pkg.cfssl.org/R1.2/cfssl_linux-amd64
curl -s -L -o /usr/bin/cfssl-json https://pkg.cfssl.org/R1.2/cfssljson_linux-amd64
curl -s -L -o /usr/bin/cfssl-certinfo https://pkg.cfssl.org/R1.2/cfssl-certinfo_linux-amd64
chmod +X /usr/bin/cfssl*

2. Create a json configuration file for the CA certificate signing request (csr)

vi /opt/certs/ca-csr.json

{
	"CN": "test123",
	"hosts": [],
	"key": {
		"algo": "rsa",
		"size": 2048
	},
	"names": [{
		"C": "CN",
		"ST": "beijing",
		"L": "beijing",
		"O": "test",
		"OU": "ok"
	}],
	"ca": {
		"expiry": "175200h"
	}
}

CN: General write domain name
C: Country
ST: Province
L: City
O: Company name
OU: Department name
175200h: 20 years

3. Generate CA certificate and private key

cfssl gencert -initca ca-csr.json | cfssl-json -bare ca

Insert picture description here

Guess you like

Origin blog.csdn.net/Asia1752/article/details/110498017
Recommended
Rushing to the GitHub hot list——How can open source programming languages and frameworks be so cute?
Beijing Humanoid Robot Innovation Center launches Tiangong, the world's first full-size humanoid robot with purely electric drive for anthropomorphic running
Ranking
8个无需编写代码即可使用 Python 内置库的方法
Java collections interview knowledge Lite
Machine learning algorithms foundation - Introduction a (watermelon materials for the book)
(Easy) Ransom Note - LeetCode
[Five days] Qt from entry to actual combat: the second day
Remember once extremely pit father can not download Maven Jar package of issues: IDEA question
The minimum cost Shortest
OSPF study map (the most complete version)
Network Takeaways
GnuPG
Daily
More
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)
2024-04-23(30)
2024-04-22(5)
2024-04-21(0)
2024-04-20(6)
2024-04-19(5)
2024-04-18(0)

Code World

© 2018 codetd.com