1 # easy-rsa parameter settings
3 # NOTE: If you installed from an RPM,
4 # don't edit this file in place in
5 # /usr/share/openvpn/easy-rsa --
6 # instead, you should copy the whole
7 # easy-rsa directory to another location
8 # (such as /etc/openvpn) so that your
9 # edits will not be wiped out by a future
10 # OpenVPN package upgrade.
12 # This variable should point to
13 # the top level of the easy-rsa
15 export EASY_RSA="`pwd`"
18 # This variable should point to
19 # the requested executables
21 export OPENSSL="openssl"
22 export PKCS11TOOL="pkcs11-tool"
26 # This variable should point to
27 # the openssl.cnf file included
29 export KEY_CONFIG=`$EASY_RSA/whichopensslcnf $EASY_RSA`
31 # Edit this variable to point to
32 # your soon-to-be-created key
35 # WARNING: clean-all will do
36 # a rm -rf on this directory
37 # so make sure you define
39 export KEY_DIR="$EASY_RSA/keys"
41 # Issue rm -rf warning
42 echo NOTE: If you run ./clean-all, I will be doing a rm -rf on $KEY_DIR
45 export PKCS11_MODULE_PATH="dummy"
46 export PKCS11_PIN="dummy"
48 # Increase this to 2048 if you
49 # are paranoid. This will slow
50 # down TLS negotiation performance
51 # as well as the one-time DH parms
55 # In how many days should the root CA key expire?
58 # In how many days should certificates expire?
61 # These are the default values for fields
62 # which will be placed in the certificate.
63 # Don't leave any of these fields blank.
64 export KEY_COUNTRY="US"
65 export KEY_PROVINCE="CA"
66 export KEY_CITY="SanFrancisco"
67 export KEY_ORG="Fort-Funston"
68 export KEY_EMAIL="me@myhost.mydomain"
69 export KEY_EMAIL=mail@host.domain
70 export KEY_CN=changeme
71 export KEY_NAME=changeme
72 export KEY_OU=changeme
73 export PKCS11_MODULE_PATH=changeme
74 export PKCS11_PIN=1234
git.bettercrypto.org / ach-master.git / blob