採用 1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
### Step by Step
- Setting vars for Root CA
> export KEY_SIZE=2048
export CA_EXPIRE=365
export KEY_EXPIRE=365
export KEY_COUNTRY="TW"
export KEY_PROVINCE="Taiwan"
export KEY_CITY="HsinChu"
export KEY_ORG="Night9 Studios"
export KEY_EMAIL="[email protected]"
export KEY_OU="www.night9.cc"
export KEY_NAME=""
export KEY_CN="roan.night9.cc"
- [Source](https://github.com/pichuang/easy-rsa/blob/single/vars)
- 重點在於 ```KEY_CN```, 此設定可以 match ```roan.night9.cc```, 但不能 match ```night9.cc``` ```xxx.night9.cc
Create Key
source ./vars
./build-key-server roan.night9.cc
\<enter>…\<enter>Check key and crt
ls -la ./keys/roan.night9.cc.{key,crt}
Check roan.night9.cc crt Info
openssl x509 -in roan.night9.crt -text -noout
Show
