| [ ca ] |
| default_ca = CA_default |
| |
| [ CA_default ] |
| dir = ./ |
| certs = $dir |
| crl_dir = $dir/crl |
| database = $dir/index.txt |
| new_certs_dir = $dir |
| certificate = $dir/server.pem |
| serial = $dir/serial |
| crl = $dir/crl.pem |
| private_key = $dir/server.key |
| RANDFILE = $dir/.rand |
| name_opt = ca_default |
| cert_opt = ca_default |
| default_days = 360 |
| default_crl_days = 300 |
| default_md = sha1 |
| preserve = no |
| policy = policy_match |
| |
| [ policy_match ] |
| countryName = match |
| stateOrProvinceName = match |
| organizationName = match |
| organizationalUnitName = optional |
| commonName = supplied |
| emailAddress = optional |
| |
| [ policy_anything ] |
| countryName = optional |
| stateOrProvinceName = optional |
| localityName = optional |
| organizationName = optional |
| organizationalUnitName = optional |
| commonName = supplied |
| emailAddress = optional |
| |
| [ req ] |
| prompt = no |
| distinguished_name = server |
| default_bits = 2048 |
| input_password = whatever |
| output_password = whatever |
| |
| [server] |
| countryName = US |
| stateOrProvinceName = CA |
| localityName = Somewhere |
| organizationName = Ciena Inc. |
| emailAddress = admin@ciena.com |
| commonName = "Example Server Certificate" |
| |