changelog shortlog graph tags branches changeset files file revisions raw help

Mercurial > infra / annotate scripts/easy-rsa-gen-server.sh

changeset 214: 847281f20daf
author: Richard Westhaver <ellis@rwest.io>
date: Mon, 29 Apr 2024 00:27:10 +0000
permissions: -rw-r--r--
description: easy-rsa
214
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
1 
 #!/usr/bin/bash
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
2 
 cd /etc/easy-rsa
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
3 
 easyrsa init-pki
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
4 
 easyrsa gen-req $HOSTNAME nopass
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
5 
 cp /etc/easy-rsa/pki/private/$HOSTNAME.key /etc/openvpn/server/
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
6 
 # HMAC key with elliptic curve
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
7 
 openvpn --genkey tls-auth /etc/openvpn/server/ta.key
847281f20daf easy-rsa
Richard Westhaver <ellis@rwest.io>
parents:
diff changeset
8 
 chown openvpn:network /etc/openvpn/server/ta.key