Init CA

Signed-off-by: Georg <georg@lysergic.dev>

3 files changed, 42 insertions, 0 deletions

diff --git a/ca/orpheus.psyched.dev_ext.cnf b/ca/orpheus.psyched.dev_ext.cnf
new file mode 100644
index 0000000..ae5584b
--- /dev/null
+++ b/ca/orpheus.psyched.dev_ext.cnf
@@ -0,0 +1,14 @@
+[v3_ca]
+basicConstraints = CA:FALSE
+nsCertType = server
+nsComment = "Web Server Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+keyUsage = critical, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth
+subjectAltName = @alt_names
+[ alt_names ]
+DNS.1 = orpheus.syscid.com
+DNS.2 = auth.syscid.com
+DNS.3 = www.syscid.com
+DNS.4 = sso.syscid.com
diff --git a/ca/server_cert_ext.cnf b/ca/server_cert_ext.cnf
new file mode 100644
index 0000000..c1b870c
--- /dev/null
+++ b/ca/server_cert_ext.cnf
@@ -0,0 +1,15 @@
+[v3_ca]
+basicConstraints = CA:FALSE
+nsCertType = server
+nsComment = "LDAP01 Server Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+keyUsage = critical, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth
+subjectAltName = @alt_names
+[ alt_names ]
+DNS.1 = ldap.syscid.com
+DNS.2 = ldap01.syscid.com
+DNS.3 = dir.syscid.com
+DNS.4 = dir01.syscid.com
+DNS.5 = gaia.syscid.com
diff --git a/ca/web.sun.lysergic.dev_ext.cnf b/ca/web.sun.lysergic.dev_ext.cnf
new file mode 100644
index 0000000..1620528
--- /dev/null
+++ b/ca/web.sun.lysergic.dev_ext.cnf
@@ -0,0 +1,13 @@
+[v3_ca]
+basicConstraints = CA:FALSE
+nsCertType = server
+nsComment = "LDAP01 Server Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+keyUsage = critical, digitalSignature, keyEncipherment
+extendedKeyUsage = serverAuth
+subjectAltName = @alt_names
+[ alt_names ]
+DNS.1 = web.sun.lysergic.dev
+DNS.2 = web.syscid.com
+DNS.3 = web