key usages

This commit is contained in:
Simon Josefsson
2014-10-01 16:07:32 +02:00
parent 8ab77aa89f
commit 83e6e4e58c
+2
View File
@@ -191,6 +191,8 @@ Then generate a new private key and certificate request:
Then sign the certificate using the NEO:
cat>yubico-internal-https-ee-$host-crt.conf<<EOF
keyUsage=critical,digitalSignature,keyEncipherment
extendedKeyUsage=critical,serverAuth
EOF
openssl << EOF
engine dynamic -pre SO_PATH:/usr/lib/engines/engine_pkcs11.so -pre ID:pkcs11 -pre NO_VCHECK:1 -pre LIST_ADD:1 -pre LOAD -pre MODULE_PATH:/usr/lib/x86_64-linux-gnu/opensc-pkcs11.so -pre VERBOSE