Skip to content
/ san Public
forked from ospii/san

Script to generate CSR file with SAN entries.

License

MIT license
0 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

kholis/san

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

12 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
pem2jks.sh
pem2jks.sh
 
 
san
san
 
 

Repository files navigation

SAN

Script for generating certificate requests with subject alternative name(s) for a given RSA key.

  1. Generate private key (if you don't have)
openssl genrsa -out server01.key 2048
  1. Generate csr
./san --key=server01.key --csr=server01.csr --san="DNS.1:server01.example.com,IP.1:10.10.10.10" --dn="C=ID,ST=DKI,L=Jakarta,O=Example Inc,OU=IT,CN=server01.example.com"
  1. Check csr. You will have these entries on your csr file:
$ openssl req -in server01.csr -noout -text
        Attributes:
        Requested Extensions:
            X509v3 Basic Constraints:
                CA:FALSE
            X509v3 Key Usage:
                Digital Signature, Key Encipherment
            X509v3 Extended Key Usage:
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Subject Alternative Name:
                DNS:server01.example.com
                IP:10.10.10.10
  1. [Optional] You can also convert cert from PEM format to JKS format with these command:
  • Edit these 3 variable first:
DOMAIN=".example.com"
KS_PWD="YourSecretPasswd"
TS_PWD="changeit"
  • Run Command:
$ ./pem2jks.sh server01

About

Script to generate CSR file with SAN entries.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 100.0%