FastHandle - IT Operations Examples

FastHandle is fast operation tools for infrastructure configurations and tests.

User Tools

Site Tools


Sidebar


Top     SiteMap

Manager Server

Target Server

$FHHOME/bin/xxx.sh | xxxx.exp













.

fhscripts:create:create_ssl_csr_key.sh.html



FastHandle Scripts

Script for Creating SSL CSR and Key with one-line

What is create_ssl_csr_key.sh

  • Creating SSL CSR and Key
WARNING

If you want to create a Self-Signed CSR, you must use create_sslsan_csr_key.sh .
Because from Chrome 58 onwards, you must use SSL SAN.

Related Script

How to use create_ssl_csr_key.sh

$ create_ssl_csr_key.sh  example.com
$ create_ssl_csr_key.sh  192.168.0.10

Example Output

$ create_ssl_csr_key.sh 192.168.0.15
Generating a 2048 bit RSA private key
....................................+++
.....+++
writing new private key to '192.168.0.15.key'
-----
==========================================================
Check
==========================================================

# ls -lh  192.168.0.15*
-rw-r--r-- 1 root root 1013 Dec 19 01:02 192.168.0.15.csr
-rw-r--r-- 1 root root 1.7K Dec 19 01:02 192.168.0.15.key

#openssl req -text -in 192.168.0.15.csr |grep "Subject:"
        Subject: C=JP, ST=Tokyo, L=Shibuya-ku, O=Example, Inc., OU=IT, CN=192.168.0.15


create_ssl_csr_key.sh

$FHHOME/bin/create_ssl_csr_key.sh

#!/bin/bash
#===============================================
# create_ssl_csr_key.sh
#
# How to use
#     create_ssl_csr_key.sh  example.com
#     create_ssl_csr_key.sh  192.168.0.10
#===============================================

if [ -z $1 ]; then
cat << @
ERROR: \$1 argument is null
How to use:
  create_csr_key.sh 192.168.0.10
@
exit 1
fi

C="JP"
ST="Tokyo"
L="Shibuya-ku"
O="Example, Inc."
OU="IT"
CN="$1"


test -f ${CN}.csr && mv ${CN}.csr ${CN}.csr.`date +%Y%m%d_%H%M`
test -f ${CN}.key && mv ${CN}.key ${CN}.key.`date +%Y%m%d_%H%M`

openssl req -new -newkey rsa:2048 -nodes -out ${CN}.csr -keyout ${CN}.key -sha256 -subj "/C=${C}/ST=${ST}/L=${L}/O=${O}/OU=${OU}/CN=${CN}"

cat << @
==========================================================
Check
==========================================================

# ls -ltrh  ${CN}* |tail -n 2
`ls -ltrh ${CN}* |tail -n 2`

#openssl req -text -in ${CN}.csr |grep "Subject:"
`openssl req -text -in ${CN}.csr |grep "Subject:"`

@




fhscripts



fhscripts/create/create_ssl_csr_key.sh.html.txt ยท Last modified: 2018/03/29 00:06 by kurihara