Update Certificate for all FQDNs

Issue-ID: AAF-114 Change-Id: I0b73d55b471e0438bb4beb901a992be88e1e5f11 Signed-off-by: Instrumental <jonathan.gathman@att.com>
author: Instrumental <jonathan.gathman@att.com> 2018-05-01 15:03:25 -0500
committer: Instrumental <jonathan.gathman@att.com> 2018-05-01 15:03:38 -0500
commit: 68b2315d44b8df80d87b9fd050fe21aeea144c8f (patch)
tree: 6a492217784988e503f7a57224c5d56a5afe66bc /conf/CA/san.conf
parent: 0af1db4fda4667244af0cec983293aefa203d710 (diff)
1 files changed, 15 insertions, 0 deletions
diff --git a/conf/CA/san.conf b/conf/CA/san.conf
new file mode 100644
index 00000000..de9f62f9
--- /dev/null
+++ b/conf/CA/san.conf
@@ -0,0 +1,15 @@
+# SAN Extension
+# Copy, then add DNS.1 = name, etc
+#
+[ server_cert ]
+# Extensions for server certificates (`man x509v3_config`).
+basicConstraints = CA:FALSE
+nsCertType = server, client
+nsComment = "OpenSSL Generated Server Certificate"
+subjectKeyIdentifier = hash
+authorityKeyIdentifier = keyid,issuer:always
+keyUsage = critical, digitalSignature, keyEncipherment, nonRepudiation
+extendedKeyUsage = serverAuth, clientAuth
+subjectAltName = @alt_names
+
+[ alt_names ]
author	Instrumental <jonathan.gathman@att.com>	2018-05-01 15:03:25 -0500
committer	Instrumental <jonathan.gathman@att.com>	2018-05-01 15:03:38 -0500
commit	68b2315d44b8df80d87b9fd050fe21aeea144c8f (patch)
tree	6a492217784988e503f7a57224c5d56a5afe66bc /conf/CA/san.conf
parent	0af1db4fda4667244af0cec983293aefa203d710 (diff)