|
1 # openssl.config |
|
2 # |
|
3 # Config file for OpenSSL CA |
|
4 |
|
5 [ ca ] |
|
6 |
|
7 default_ca = ca_default # The default ca section |
|
8 |
|
9 [ ca1 ] |
|
10 |
|
11 dir = ./ca1 |
|
12 database = $dir/index.txt # index file. |
|
13 new_certs_dir = $dir/certs # new certs dir |
|
14 |
|
15 certificate = $dir/cacert.pem # The CA cert |
|
16 serial = $dir/serial # serial no file |
|
17 private_key = $dir/private/cakey.pem # CA private key |
|
18 RANDFILE = $dir/private/.rand # random number file |
|
19 |
|
20 default_days = 365 # how long to certify for |
|
21 default_crl_days= 30 # how long before next CRL |
|
22 default_md = md5 # md to use |
|
23 |
|
24 policy = ca_policy # our policy |
|
25 email_in_dn = no # Don't add the email into cert DN |
|
26 |
|
27 nameopt = default_ca # Subject name display option |
|
28 certopt = default_ca # Certificate display option |
|
29 copy_extensions = none # Don't copy extensions from request |
|
30 |
|
31 [ ca2 ] |
|
32 |
|
33 dir = ./ca2 |
|
34 database = $dir/index.txt # index file. |
|
35 new_certs_dir = $dir/certs # new certs dir |
|
36 |
|
37 certificate = $dir/cacert.pem # The CA cert |
|
38 serial = $dir/serial # serial no file |
|
39 private_key = $dir/private/cakey.pem # CA private key |
|
40 RANDFILE = $dir/private/.rand # random number file |
|
41 |
|
42 default_days = 365 # how long to certify for |
|
43 default_crl_days= 30 # how long before next CRL |
|
44 default_md = md5 # md to use |
|
45 |
|
46 policy = ca_policy # our policy |
|
47 email_in_dn = no # Don't add the email into cert DN |
|
48 |
|
49 nameopt = default_ca # Subject name display option |
|
50 certopt = default_ca # Certificate display option |
|
51 copy_extensions = none # Don't copy extensions from request |
|
52 |
|
53 [ ca_policy ] |
|
54 |
|
55 organizationName = supplied |
|
56 commonName = supplied |