Certificates
This section contains scripts related to standalone and certificate authority based certificates.
Standalone Certificates
|
Standalone certificates are useful if you do not use mutual TLS or if the server’s certificate verifier supports using a trust anchor as both a CA certificate and an end-entity certificate. |
- create_self_signed_cert
-
create a private key and self-signed certificate
- delete_self_signed_cert
-
delete the private key and self-signed certificate
- renew_self_signed_cert
-
renew the private key and self-signed certificate
- verify_self_signed_cert
-
verify the self-signed certificate
Certificate Authority Based Certificates
|
Certificate authority based certificates are useful if you want to use mutual TLS or if the server’s certificate verifier does not support using a trust anchor as both a CA certificate and an end-entity certificate (e.g. rusttls). |
|
Standalone certificates are simpler to use than certificate authority based certificates. |
- copy_ca_based_cert
-
copies the private key and certificate based on a certificate authority to a given directory
- copy_ca_root_cert
-
copies the root certificate of the certificate authority to a given directory
- create_ca
-
create a certificate authority and its root certificate
- create_ca_based_cert
-
create a private key and certificate based on a certificate authority
- delete_ca
-
delete the certificate authority
- delete_ca_based_cert
-
delete the certificate authority based private key and certificate
- renew_ca_based_cert
-
renew the certificate authority based certificate
- verify_ca_based_cert
-
verify the certificate authority based certificate