Generate a certificat signing request (CSR)

6/13/2017 - 1:20 PM

Generate a certificat signing request (CSR)

#!/bin/bash

openssl req -new -sha256 -nodes -out \*.secureauth.com.csr -newkey rsa:2048 -keyout \*.secureauth.com.key -config <(
cat <<-EOF
[req]
default_bits = 2048
prompt = no
default_md = sha256
req_extensions = req_ext
distinguished_name = dn

[ dn ]
C=US
ST=California
L=Irvine
O=Engineering
OU=DevOps
emailAddress=devops@example.com
CN = *.secureauth.com

[ req_ext ]
subjectAltName = @alt_names

[ alt_names ]
DNS.1 = secureauth.com
DNS.2 = *.example.com
EOF
)

# Verify CSR
openssl req -noout -text -in *.secureauth.com.csr | grep DNS

Cacher is the code snippet organizer for pro developers

We empower you and your team to get more done, faster

Generate a certificat signing request (CSR)