I am on my way to learn more about OpenSSL. My current task is to create a script, similar to CA.pl, to ease cert handling.
Ideally I would want to have one config file, holding different values for a CA cert, a server cert and a client cert separated by sections. This would require to have (at least) different [ req_distinguished_name ] sections, right? If I understood the documentation and what I read on the ML archive this cannot be done, correct? Am I right, that if I would want to create certs with as less interaction as possible I would have to create a config file for every cert I'd like to create and use entries like: countryName_value = EX stateOrProvinceName_value = Examplia localityName_value = Exampleton ... Is there a way to create different certs from one config file without user interaction? I'd be glad to RTFM or hear about best practices. TIA, Patrick Koetter ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
