From 8f34173c6d2629c71260ece861b297c8c2903bcf Mon Sep 17 00:00:00 2001 From: Georg Date: Mon, 30 Aug 2021 21:40:13 +0200 Subject: Init CA Signed-off-by: Georg --- ca/orpheus.psyched.dev_ext.cnf | 14 ++++++++++++++ ca/server_cert_ext.cnf | 15 +++++++++++++++ ca/web.sun.lysergic.dev_ext.cnf | 13 +++++++++++++ 3 files changed, 42 insertions(+) create mode 100644 ca/orpheus.psyched.dev_ext.cnf create mode 100644 ca/server_cert_ext.cnf create mode 100644 ca/web.sun.lysergic.dev_ext.cnf (limited to 'ca') diff --git a/ca/orpheus.psyched.dev_ext.cnf b/ca/orpheus.psyched.dev_ext.cnf new file mode 100644 index 0000000..ae5584b --- /dev/null +++ b/ca/orpheus.psyched.dev_ext.cnf @@ -0,0 +1,14 @@ +[v3_ca] +basicConstraints = CA:FALSE +nsCertType = server +nsComment = "Web Server Certificate" +subjectKeyIdentifier = hash +authorityKeyIdentifier = keyid,issuer:always +keyUsage = critical, digitalSignature, keyEncipherment +extendedKeyUsage = serverAuth +subjectAltName = @alt_names +[ alt_names ] +DNS.1 = orpheus.syscid.com +DNS.2 = auth.syscid.com +DNS.3 = www.syscid.com +DNS.4 = sso.syscid.com diff --git a/ca/server_cert_ext.cnf b/ca/server_cert_ext.cnf new file mode 100644 index 0000000..c1b870c --- /dev/null +++ b/ca/server_cert_ext.cnf @@ -0,0 +1,15 @@ +[v3_ca] +basicConstraints = CA:FALSE +nsCertType = server +nsComment = "LDAP01 Server Certificate" +subjectKeyIdentifier = hash +authorityKeyIdentifier = keyid,issuer:always +keyUsage = critical, digitalSignature, keyEncipherment +extendedKeyUsage = serverAuth +subjectAltName = @alt_names +[ alt_names ] +DNS.1 = ldap.syscid.com +DNS.2 = ldap01.syscid.com +DNS.3 = dir.syscid.com +DNS.4 = dir01.syscid.com +DNS.5 = gaia.syscid.com diff --git a/ca/web.sun.lysergic.dev_ext.cnf b/ca/web.sun.lysergic.dev_ext.cnf new file mode 100644 index 0000000..1620528 --- /dev/null +++ b/ca/web.sun.lysergic.dev_ext.cnf @@ -0,0 +1,13 @@ +[v3_ca] +basicConstraints = CA:FALSE +nsCertType = server +nsComment = "LDAP01 Server Certificate" +subjectKeyIdentifier = hash +authorityKeyIdentifier = keyid,issuer:always +keyUsage = critical, digitalSignature, keyEncipherment +extendedKeyUsage = serverAuth +subjectAltName = @alt_names +[ alt_names ] +DNS.1 = web.sun.lysergic.dev +DNS.2 = web.syscid.com +DNS.3 = web -- cgit v1.2.3