projects
/
shibboleth
/
cpp-sp.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
SSPCPP-686 - Switch to SHA-2 certs and 3072 bit keys on install
[shibboleth/cpp-sp.git]
/
configs
/
keygen.bat
diff --git
a/configs/keygen.bat
b/configs/keygen.bat
index
ae223a4
..
14a5fdb
100644
(file)
--- a/
configs/keygen.bat
+++ b/
configs/keygen.bat
@@
-31,12
+31,12
@@
if not defined FQDN goto guess_fqdn
:generate
set PATH=%PATH%;%ProgramFiles%\Shibboleth\SP\lib\
set CNF="%PREFIX%sp-cert.cnf"
:generate
set PATH=%PATH%;%ProgramFiles%\Shibboleth\SP\lib\
set CNF="%PREFIX%sp-cert.cnf"
-echo # OpenSSL configuration file for creating
sp-cert.pem
>%CNF%
+echo # OpenSSL configuration file for creating
keypair
>%CNF%
echo [req] >>%CNF%
echo prompt=no >>%CNF%
echo [req] >>%CNF%
echo prompt=no >>%CNF%
-echo default_bits=
2048
>>%CNF%
+echo default_bits=
3072
>>%CNF%
echo encrypt_key=no >>%CNF%
echo encrypt_key=no >>%CNF%
-echo default_md=sha
1
>>%CNF%
+echo default_md=sha
256
>>%CNF%
echo distinguished_name=dn >>%CNF%
echo # PrintableStrings only >>%CNF%
echo string_mask=MASK:0002 >>%CNF%
echo distinguished_name=dn >>%CNF%
echo # PrintableStrings only >>%CNF%
echo string_mask=MASK:0002 >>%CNF%