aboutsummaryrefslogtreecommitdiff
path: root/src/gns/gnutls_ca.cfg
diff options
context:
space:
mode:
Diffstat (limited to 'src/gns/gnutls_ca.cfg')
-rw-r--r--src/gns/gnutls_ca.cfg25
1 files changed, 25 insertions, 0 deletions
diff --git a/src/gns/gnutls_ca.cfg b/src/gns/gnutls_ca.cfg
new file mode 100644
index 000000000..f551ae8ab
--- /dev/null
+++ b/src/gns/gnutls_ca.cfg
@@ -0,0 +1,25 @@
1# This template file specifies that the certificate is a certificate
2# authority that will be used to sign other certificates, and
3# certificate revocations. Set additional properties (e.g. a CRL URI)
4# as appropriate.
5
6# Certificate authority template
7organization = "Example"
8cn = "Your CA name here"
9expiration_days = 3650
10
11# This CA can not issue subsidiary CAs
12path_len = 0
13
14# Is a CA
15ca
16
17# Signs certificates and certificate revocation lists
18cert_signing_key
19crl_signing_key
20
21# Name constraints (recommended); new in GnuTLS 3.3.x
22# Setting this will allow this CA to only issue
23# certificates for this domain
24nc_permit_dns = "example.com"
25#nc_exclude_dns = "test.example.com"