|
[root@gw1 ~]# cd /soft_dir/openvpn-2.0.9/easy-rsa/
[root@gw1 easy-rsa]# source vars
NOTE: when you run ./clean-all, I will be doing a rm -rf on /soft_dir/openvpn-2.0.9/easy-rsa/keys
[root@gw1 easy-rsa]# export KEY_DIR=/etc/openvpn/keys/
[root@gw1 easy-rsa]# ./build-key client-pc1
Generating a 1024 bit RSA private key
.........
...............
writing new private key to ''client-pc1.key''
-----
You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter ''.'', the field will be left blank.
-----
Country Name (2 letter code) [CN]:
State or Province Name (full name) [BeiJing]:
Locality Name (eg, city) [BISHKEK]:
Organization Name (eg, company) [BENET.Inc]:
Organizational Unit Name (eg, section) []:
Common Name (eg, your name or your server''s hostname) []:client-pc1.benet.com
Email Address [vpnadm@benet.com]:
Please enter the following ''extra'' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:
Using configuration from /soft_dir/openvpn-2.0.9/easy-rsa/openssl.cnf
Check that the request matches the signature
Signature ok
The Subject''s Distinguished Name is as follows
countryName :PRINTABLE:''CN''
stateOrProvinceName :PRINTABLE:''BeiJing''
localityName :PRINTABLE:''BISHKEK''
organizationName :PRINTABLE:''BENET.Inc''
commonName :PRINTABLE:''client-pc1.benet.com''
emailAddress :IA5STRING:''vpnadm@benet.com''
Certificate is to be certified until Jul 12 06:10:23 2020 GMT (3650 days)
Sign the certificate? [y/n]:y
1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
|
