@@ -714,12 +714,12 @@ generate_certs() {
714714 openssl genrsa -des3 -out ${SSL_DIR} /defguard-ca.key -passout pass:" ${PASSPHRASE} " 2>&1 >> ${LOG_FILE}
715715 # generate Root Certificate
716716 # TODO: allow configuring CA parameters
717- openssl req -x509 -new -nodes -key ${SSL_DIR} /defguard-ca.key -sha256 -days 1825 -out ${SSL_DIR} /defguard-ca.pem -passin pass:" ${PASSPHRASE} " " /C=PL/ST=Zachodniopomorskie/L=Szczecin/O=Example/OU=IT Department/ CN=${CFG_DOMAIN} " 2>&1 >> ${LOG_FILE}
717+ openssl req -x509 -new -nodes -key ${SSL_DIR} /defguard-ca.key -sha256 -days 1825 -out ${SSL_DIR} /defguard-ca.pem -passin pass:" ${PASSPHRASE} " " /CN=${CFG_DOMAIN} " 2>&1 >> ${LOG_FILE}
718718
719719 # generate CA-signed certificate for Defguard gRPC
720720 openssl genrsa -out ${SSL_DIR} /defguard-grpc.key 2048 2>&1 >> ${LOG_FILE}
721721
722- openssl req -new -key ${SSL_DIR} /defguard-grpc.key -out ${SSL_DIR} /defguard-grpc.csr -subj " /C=PL/ST=Zachodniopomorskie/L=Szczecin/O=Example/OU=IT Department/ CN=${CFG_DOMAIN} " 2>&1 >> ${LOG_FILE}
722+ openssl req -new -key ${SSL_DIR} /defguard-grpc.key -out ${SSL_DIR} /defguard-grpc.csr -subj " /CN=${CFG_DOMAIN} " 2>&1 >> ${LOG_FILE}
723723 cat > ${SSL_DIR} /defguard-grpc.ext << EOF
724724authorityKeyIdentifier=keyid,issuer
725725basicConstraints=CA:FALSE
736736 # generate CA-signed certificate for Defguard proxy gRPC
737737 openssl genrsa -out ${SSL_DIR} /defguard-proxy-grpc.key 2048 2>&1 >> ${LOG_FILE}
738738
739- openssl req -new -key ${SSL_DIR} /defguard-proxy-grpc.key -out ${SSL_DIR} /defguard-proxy-grpc.csr -subj " /C=PL/ST=Zachodniopomorskie/L=Szczecin/O=Example/OU=IT Department/ CN=${CFG_DOMAIN} " 2>&1 >> ${LOG_FILE}
739+ openssl req -new -key ${SSL_DIR} /defguard-proxy-grpc.key -out ${SSL_DIR} /defguard-proxy-grpc.csr -subj " /CN=${CFG_DOMAIN} " 2>&1 >> ${LOG_FILE}
740740 cat > ${SSL_DIR} /defguard-proxy-grpc.ext << EOF
741741authorityKeyIdentifier=keyid,issuer
742742basicConstraints=CA:FALSE
0 commit comments