easy-rsa
easy-rsa copied to clipboard
OpenVPN
easy-rsa - Simple shell based CA utility
Hi, I have been learning about Easy-RSA and PKI in general. I've read several articles about planning a PKI that say to renew the CA with the same key halfway...
I'm currently having issues signing a CSR for a Sub-CA (Windows ADCS): After importing the csr, sign-req results in: ``` root@linux-ca:~# /usr/share/easy-rsa/easyrsa --pki-dir=/etc/pki/r1 --days=500 --batch sign-req ca windows-sub-ca Using SSL:...
Example: - Delete `x509-types/COMMON` - Build a CA ``` $ easyrsa build-ca nopass * Using Easy-RSA configuration from: /home/tct/git/easy-rsa/test/installed/pki/vars * Using SSL: openssl OpenSSL 1.1.1f 31 Mar 2020 cat: /usr/share/easy-rsa/x509-types/COMMON:...
Sometime, you get a request with "extra" information you would rather not have in the final certificate, this change allows changing the subject of the request when producing the certificate....
I proposing dropping the claim to adhere to POSIX in favor of a looser claim to a happy-medium of BSD/GNU compatibility. I'd even go so far as to say we...
'x509-alt-types' allows EasyRSA to maintain some core x509-types and allow for much more relaxed rules regarding alternatives. This allows for changes in RFC specification for X509 to be incorporated in...
Required: ``` verify_ssl_lib() { if [ -z "$EASYRSA_SSL_OK" ]; then save_OPENSSL_CONF="$OPENSSL_CONF" unset OPENSSL_CONF # redirect std-err to ignore missing etc/ssl/openssl.cnf file "$EASYRSA_OPENSSL" version val="$("$EASYRSA_OPENSSL" version 2>/dev/null)" || die "\ SSL...
Would like to support multiple CAs and/or sub-CAs. Basically, we'd have a root path, and sub paths for each subsequent CA/sub-CA in a directory structure, kinda like this: `/home/ecrist/easy-rsa |--example.org...
I would like to restrict a third party Root CA to signing specific names. For this, I need to cross-sign this Root CA with my own CA while using extension...
Hello, The `easyrsa` CLI is powerful but a bit tricky to use as it support many arguments. Even worst, positional arguments matters ! That's why a started to write a...
