-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathcerts_ca.ps1
18 lines (16 loc) · 935 Bytes
/
certs_ca.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
Write-Output "Creating CA certificates"
mkdir ./certs -ea 0
Set-Location ./certs
# Only create CA unless it exists
if (Test-Path kubernetes-dev-self-ca.crt -PathType Leaf) {
Write-Output "CA Certificate already exists"
} else {
# Creating CA
openssl genrsa -out kubernetes-dev-self-ca.key 2048
openssl req -x509 -new -nodes -key kubernetes-dev-self-ca.key -sha256 -days 1825 -out kubernetes-dev-self-ca.crt -subj "/CN=Dev Kubernetes CA/O=Kubernetes Testing CA/ST=Castle/L=Tower/OU=Guard/C=DK" -config ../ca_config.conf
openssl pkcs12 -export -out kubernetes-dev-self-ca.p12 -inkey kubernetes-dev-self-ca.key -in kubernetes-dev-self-ca.crt -passout pass:
# openssl x509 -inform pem -in kubernetes-dev-self-ca.pem -outform der -out kubernetes-dev-self-ca.crt
# openssl x509 -in kubernetes-dev-self-ca.crt -inform der -text -noout
# openssl x509 -in kubernetes-dev-self-ca.pem -inform pem -text -noout
}
Set-Location ..