spareslant · June 28, 2020 19:56
diff --git a/create_self_signed_ca_and_cert.sh b/create_self_signed_ca_and_cert.sh
 #! /bin/bash

 CERTS_DIR=/tmp/myCerts
 rm -rf $CERTS_DIR
 mkdir -p $CERTS_DIR

 CN_NAME="192.168.0.20"
 CA_DOMAIN="${CN_NAME}"
 ALT_IP="${CN_NAME}"

 echo "***** Create OpenSSL certificate and key ******"
 cd ${CERTS_DIR}
 openssl genrsa -out rootCA.key 4096
 echo "======= Generate CA ========="
 openssl req -x509 -new -nodes -key rootCA.key -sha256 -days 1024 -subj "/C=UK/ST=London/L=London/O=PlatformEngg/OU=Engg/CN=${CA_DOMAIN}" -out ca.pem
 echo "======== Generate CSR ========"
 openssl genrsa -out server_key.pem 2048
 openssl req -new -sha256 -key server_key.pem \
 -subj "/C=UK/ST=London/L=London/O=PlatformEngg/OU=Engg/CN=${CN_NAME}" \
 -reqexts SAN -extensions SAN \
 -config <(cat /etc/ssl/openssl.cnf <(printf "[SAN]\nsubjectAltName=IP:${ALT_IP}")) \
 -out server.csr
 echo "======== Sign CSR with CA and create CERT========"
 openssl x509 -req -in server.csr -CA ca.pem -CAkey rootCA.key -CAcreateserial -out server_cert.pem -days 365 -sha256
	#! /bin/bash

	CERTS_DIR=/tmp/myCerts
	rm -rf $CERTS_DIR
	mkdir -p $CERTS_DIR

	CN_NAME="192.168.0.20"
	CA_DOMAIN="${CN_NAME}"
	ALT_IP="${CN_NAME}"

	echo "*** Create OpenSSL certificate and key ****"
	cd ${CERTS_DIR}
	openssl genrsa -out rootCA.key 4096
	echo "======= Generate CA ========="
	openssl req -x509 -new -nodes -key rootCA.key -sha256 -days 1024 -subj "/C=UK/ST=London/L=London/O=PlatformEngg/OU=Engg/CN=${CA_DOMAIN}" -out ca.pem
	echo "======== Generate CSR ========"
	openssl genrsa -out server_key.pem 2048
	openssl req -new -sha256 -key server_key.pem \
	-subj "/C=UK/ST=London/L=London/O=PlatformEngg/OU=Engg/CN=${CN_NAME}" \
	-reqexts SAN -extensions SAN \
	-config <(cat /etc/ssl/openssl.cnf <(printf "[SAN]\nsubjectAltName=IP:${ALT_IP}")) \
	-out server.csr
	echo "======== Sign CSR with CA and create CERT========"
	openssl x509 -req -in server.csr -CA ca.pem -CAkey rootCA.key -CAcreateserial -out server_cert.pem -days 365 -sha256