raddb/certs/ca.cnf

   1 [ ca ]
   2 default_ca              = CA_default
   3
   4 [ CA_default ]
   5 dir                     = ./
   6 certs                   = $dir
   7 crl_dir                 = $dir/crl
   8 database                = $dir/index.txt
   9 new_certs_dir           = $dir
  10 certificate             = $dir/ca.pem
  11 serial                  = $dir/serial
  12 crl                     = $dir/crl.pem
  13 private_key             = $dir/ca.key
  14 RANDFILE                = $dir/.rand
  15 name_opt                = ca_default
  16 cert_opt                = ca_default
  17 default_days            = 365
  18 default_crl_days        = 30
  19 default_md              = md5
  20 preserve                = no
  21 policy                  = policy_match
  22
  23 [ policy_match ]
  24 countryName             = match
  25 stateOrProvinceName     = match
  26 organizationName        = match
  27 organizationalUnitName  = optional
  28 commonName              = supplied
  29 emailAddress            = optional
  30
  31 [ policy_anything ]
  32 countryName             = optional
  33 stateOrProvinceName     = optional
  34 localityName            = optional
  35 organizationName        = optional
  36 organizationalUnitName  = optional
  37 commonName              = supplied
  38 emailAddress            = optional
  39
  40 [ req ]
  41 prompt                  = no
  42 distinguished_name      = certificate_authority
  43 default_bits            = 2048
  44 input_password          = whatever
  45 output_password         = whatever
  46 x509_extensions         = v3_ca
  47
  48 [certificate_authority]
  49 countryName             = FR
  50 stateOrProvinceName     = Radius
  51 localityName            = Somewhere
  52 organizationName        = Example Inc.
  53 emailAddress            = admin@example.com
  54 commonName              = "Example Certificate Authority"
  55
  56 [v3_ca]
  57 subjectKeyIdentifier    = hash
  58 authorityKeyIdentifier  = keyid:always,issuer:always
  59 basicConstraints        = CA:true