diff options
Diffstat (limited to 'src/gns/gnutls_ca.cfg')
-rw-r--r-- | src/gns/gnutls_ca.cfg | 25 |
1 files changed, 25 insertions, 0 deletions
diff --git a/src/gns/gnutls_ca.cfg b/src/gns/gnutls_ca.cfg new file mode 100644 index 000000000..f551ae8ab --- /dev/null +++ b/src/gns/gnutls_ca.cfg | |||
@@ -0,0 +1,25 @@ | |||
1 | # This template file specifies that the certificate is a certificate | ||
2 | # authority that will be used to sign other certificates, and | ||
3 | # certificate revocations. Set additional properties (e.g. a CRL URI) | ||
4 | # as appropriate. | ||
5 | |||
6 | # Certificate authority template | ||
7 | organization = "Example" | ||
8 | cn = "Your CA name here" | ||
9 | expiration_days = 3650 | ||
10 | |||
11 | # This CA can not issue subsidiary CAs | ||
12 | path_len = 0 | ||
13 | |||
14 | # Is a CA | ||
15 | ca | ||
16 | |||
17 | # Signs certificates and certificate revocation lists | ||
18 | cert_signing_key | ||
19 | crl_signing_key | ||
20 | |||
21 | # Name constraints (recommended); new in GnuTLS 3.3.x | ||
22 | # Setting this will allow this CA to only issue | ||
23 | # certificates for this domain | ||
24 | nc_permit_dns = "example.com" | ||
25 | #nc_exclude_dns = "test.example.com" | ||