Automating openssl req with a config file
The other day I was trying to generate a Certificate Signing Request
openssl command . The openssl
command supports a lot
of commands, and if you
are like me, you always have difficulty remembering them.
ca commands from
openssl support providing options
using an INI-style configuration file. The config file option is useful
openssl commands in batch mode. The batch mode operation
saves time when you are trying to automate a series of steps using bash,
one of which involves using the
opnessl command to generate a CSR or
sign a certificate.
Let us suppose you want to generate a CSR for your server. You use a command like so:
You will then enter an interactive mode where you will need to enter details like Country, Organization Unit etc.
To automate this, you can create a INI-style config file
You can then generate your CSR like so:
SERVER=www.orom-staging.in openssl req -nodes -config csr.conf -out orom-staging.in.csr