easy-rsa
easy-rsa copied to clipboard
OpenVPN
easy-rsa - Simple shell based CA utility
Separating the backend process of key and request generation allows additional flexibility and workflows. De-coupling these steps allows more abstraction in how each one is performed. In particular, this may...
This issue is here to discuss how to simplify and resolve the problems related to: - _where `easyrsa` is located_ **verses** - _the current directory_, where `easyrsa` was called. When...
Pull requests #45, #46 aim to add IPSec compatibility with Easy-RSA. On-point with this goal is RFC4945, and the related informational RFC4809. After a review of the requirements in these...
remove AKI issuer from every X.509 types remove AKI completely for self-signed root CA fix #417 This change was commited 8 months ago in my local repo. Tested in Web...
I would like to use easy-rsa to manage some general purpose PKI. This change makes it conform to common practice. supersedes #187
This PR introduces a way to pass custom arguments to openssl for the gen-req, sign-req and build-ca subcommands. It basically handles a new "--" argument where everything after it is...
I set the _certificate_ and _private_key_ settings in _openssl-easyrsa.cnf_ to non-default values before calling ./easyrsa init-pki. Still _./easyrsa build-ca_ created _ca.crt_ and _private/ca.key_ files instead of files with the names...
Introduces a new format for the `./pki/private/ca.key` which can specify environment variables to point to the PKCS#11 private key on a specific token. Leveraging `op_test.orig` with a modification to support...
