mbedtls/programs/ssl/test-ca/sslconf.txt
Paul Bakker a8cd239d6b - Added support for wildcard certificates
- Added support for multi-domain certificates through the X509 Subject Alternative Name extension
2012-02-11 16:09:32 +00:00

51 lines
1.3 KiB
Plaintext

##================================================================
##============== Example OpenSSL configuration file ==============
##================================================================
# References:
#
# /etc/ssl/openssl.conf
# http://www.openssl.org/docs/apps/config.html
# http://www.openssl.org/docs/apps/x509v3_config.html
[ ca ]
default_ca = my_ca
[ my_ca ]
certificate = test-ca.crt
private_key = test-ca.key
database = index
serial = serial
new_certs_dir = newcerts
default_crl_days = 5
default_days = 3653
default_md = sha1
policy = my_policy
x509_extensions = v3_usr
copy_extensions = copy
[ my_policy ]
countryName = supplied
organizationName = match
commonName = supplied
[ req ]
distinguished_name = my_req_dn
x509_extensions = v3_ca
prompt = no
[ v3_ca ]
basicConstraints = CA:TRUE
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid:always,issuer:always
[ v3_usr ]
basicConstraints = CA:FALSE
subjectKeyIdentifier = hash
authorityKeyIdentifier = keyid,issuer
[ my_req_dn ]
C=NL
O=PolarSSL