-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathssl.sh
More file actions
executable file
·15 lines (11 loc) · 792 Bytes
/
ssl.sh
File metadata and controls
executable file
·15 lines (11 loc) · 792 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
#!/bin/bash
mkdir cfg/ssl
openssl genrsa -out cfg/ssl/rootcamundaCA.key 4096
openssl req -x509 -new -nodes -key cfg/ssl/rootcamundaCA.key -sha512 -days 3650 -out cfg/ssl/rootcamundaCA.crt \
-subj "/C=UA/ST=Dev/L=Dev/O=YourEnt/OU=IT/CN=camundaCA"
openssl req -new -newkey rsa:4096 -nodes -out cfg/ssl/camunda.csr -keyout cfg/ssl/camunda.key \
-subj "/C=UA/ST=Dev/L=Dev/O=YourEnt/OU=IT/CN=camunda"
openssl x509 -req -days 3650 -in cfg/ssl/camunda.csr -CA cfg/ssl/rootcamundaCA.crt -CAkey cfg/ssl/rootcamundaCA.key -CAcreateserial -out cfg/ssl/camunda.crt -extfile cfg/v3.cnf
openssl pkcs12 -export -in cfg/ssl/camunda.crt -inkey cfg/ssl/camunda.key -out cfg/ssl/camunda.p12 -passout pass: -name tomcat
openssl dhparam -dsaparam -out cfg/ssl/dhparam.pem 4096
chmod 644 cfg/ssl/camunda.p12