Skip to content

Commit

Permalink
[No Deploy]: add create_client_vpn_certificate.sh (#35)
Browse files Browse the repository at this point in the history
  • Loading branch information
@yutaro-sakamoto
yutaro-sakamoto authored Oct 16, 2024
1 parent 3971932 commit 9f73fef
Showing 1 changed file with 17 additions and 0 deletions.
17 changes: 17 additions & 0 deletions misc/create_client_vpn_certificate.sh
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,17 @@
#!/bin/bash

git clone https://github.com/OpenVPN/easy-rsa.git
cd easy-rsa/easyrsa3
./easyrsa init-pki
./easyrsa build-ca nopass
./easyrsa --san=DNS:server build-server-full server nopass
./easyrsa build-client-full client1.domain.tld nopass
mkdir ~/cobol4jweb/
cp pki/ca.crt ~/cobol4jweb/
cp pki/issued/server.crt ~/cobol4jweb/
cp pki/private/server.key ~/cobol4jweb/
cp pki/issued/client1.domain.tld.crt ~/cobol4jweb
cp pki/private/client1.domain.tld.key ~/cobol4jweb/
cd ~/cobol4jweb/
aws acm import-certificate --certificate fileb://server.crt --private-key fileb://server.key --certificate-chain fileb://ca.crt
aws acm import-certificate --certificate fileb://client1.domain.tld.crt --private-key fileb://client1.domain.tld.key --certificate-chain fileb://ca.crt

0 comments on commit 9f73fef

Please sign in to comment.