Skip to content

zabacad/zabacad-certificate-authority

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
config
config
 
 
doc
doc
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 

Repository files navigation

Zabacad's certificate authority

This is a set of OpenSSL commands and configurations for creating a private certificate authority (CA) and issuing certificates.

Why operate a CA?

Obtaining publicly-signed certificates is now free though Let's Encrypt or included with cloud services such as AWS's Certificate Manager (ACM).

There are still reasons to run a private CA:

Requirements

This guide is for OpenSSL 1.1.1. Check the version with openssl version.

Some commands assume Bash/Linux.

The CA

  1. Generating the root certificate
  2. Generating an intermediate certificate
  3. Trusting the CA

Certificates

  1. Generating certificate signing requests
  2. Issuing certificates
  3. Installing certificates

More

Future work

Warning: CAs cannot be modified. Any future changes require a rebuild.

  • Revoking certificates: CRLs, OCSP, and OCSP stapling.

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published