sl@0: # sl@0: # SSLeay example configuration file. sl@0: # This is mostly being used for generation of certificate requests. sl@0: # sl@0: sl@0: RANDFILE = ./.rnd sl@0: sl@0: #################################################################### sl@0: [ ca ] sl@0: default_ca = CA_default # The default ca section sl@0: sl@0: #################################################################### sl@0: [ CA_default ] sl@0: sl@0: dir = ./demoCA # Where everything is kept sl@0: certs = $dir/certs # Where the issued certs are kept sl@0: crl_dir = $dir/crl # Where the issued crl are kept sl@0: database = $dir/index.txt # database index file. sl@0: new_certs_dir = $dir/new_certs # default place for new certs. sl@0: sl@0: certificate = $dir/CAcert.pem # The CA certificate sl@0: serial = $dir/serial # The current serial number sl@0: crl = $dir/crl.pem # The current CRL sl@0: private_key = $dir/private/CAkey.pem# The private key sl@0: RANDFILE = $dir/private/.rand # private random number file sl@0: sl@0: default_days = 365 # how long to certify for sl@0: default_crl_days= 30 # how long before next CRL sl@0: default_md = md5 # which md to use. sl@0: sl@0: # A few difference way of specifying how similar the request should look sl@0: # For type CA, the listed attributes must be the same, and the optional sl@0: # and supplied fields are just that :-) sl@0: policy = policy_match sl@0: sl@0: # For the CA policy sl@0: [ policy_match ] sl@0: countryName = match sl@0: stateOrProvinceName = match sl@0: organizationName = match sl@0: organizationalUnitName = optional sl@0: commonName = supplied sl@0: emailAddress = optional sl@0: sl@0: # For the 'anything' policy sl@0: # At this point in time, you must list all acceptable 'object' sl@0: # types. sl@0: [ policy_anything ] sl@0: countryName = optional sl@0: stateOrProvinceName = optional sl@0: localityName = optional sl@0: organizationName = optional sl@0: organizationalUnitName = optional sl@0: commonName = supplied sl@0: emailAddress = optional sl@0: sl@0: #################################################################### sl@0: [ req ] sl@0: default_bits = 512 sl@0: default_keyfile = testkey.pem sl@0: distinguished_name = req_distinguished_name sl@0: encrypt_rsa_key = no sl@0: sl@0: [ req_distinguished_name ] sl@0: countryName = Country Name (2 letter code) sl@0: countryName_default = AU sl@0: countryName_value = AU sl@0: sl@0: stateOrProvinceName = State or Province Name (full name) sl@0: stateOrProvinceName_default = Queensland sl@0: stateOrProvinceName_value = sl@0: sl@0: localityName = Locality Name (eg, city) sl@0: localityName_value = Brisbane sl@0: sl@0: organizationName = Organization Name (eg, company) sl@0: organizationName_default = sl@0: organizationName_value = CryptSoft Pty Ltd sl@0: sl@0: organizationalUnitName = Organizational Unit Name (eg, section) sl@0: organizationalUnitName_default = sl@0: organizationalUnitName_value = . sl@0: sl@0: commonName = Common Name (eg, YOUR name) sl@0: commonName_value = Eric Young sl@0: sl@0: emailAddress = Email Address sl@0: emailAddress_value = eay@mincom.oz.au