v.licheni.net / stack / cam.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
always regenerate the CA config file if necessary
[stack/cam.git] / cam / templates / ext_config
1 basicConstraints        = CA:false
2 nsCertType              = client, server
3 keyUsage                = nonRepudiation, digitalSignature, keyEncipherment
4 extendedKeyUsage        = clientAuth, serverAuth
5 subjectKeyIdentifier    = hash
6 authorityKeyIdentifier  = keyid, issuer:always
7 subjectAltName          = @subject_alt_name
8 issuerAltName           = issuer:copy
9 crlDistributionPoints   = @cdp_section
10
11 [ subject_alt_name ]
12 %(alt_names)s
13
14 [ cdp_section ]
15 URI.1 = %(crl_url)s