Skip to content
This repository has been archived by the owner on Nov 2, 2023. It is now read-only.

wenxin-wang/strongswan-simple-pki

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
README.md
README.md
 
 
common.sh
common.sh
 
 
gen-ca.sh
gen-ca.sh
 
 
gen-parties.sh
gen-parties.sh
 
 
sync-parties.sh
sync-parties.sh
 
 

Repository files navigation

Usage

First, choose a secure location to store pki, e.g. "~/.verysecure/strongswan"

PKIDIR=~/.verysecure/strongswan

Certificates (and keys) can expire. For the ease of future renewal, each certificate and key is suffixed with today's timestamp.

Each of the three scripts, if run with no arguments, prints its usage and exits.

Create CA

Currently a $PKIDIR has only one ca.

$CANAME=only used as an identifier
./ca-key.sh $PKIDIR caname

CA certificates can expire. A symlink, representing currently used certificate and key, points to the most recently created ones with a timestamp.

Generate Server Key

./server-key.sh $PKIDIR server

Generate Client Key

./client-key.sh $PKIDIR client email

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

1 star

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages