blob: 7def1ccde1af48de329d160ec61fef1533f44e1c (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
|
#
# Net-SNMP Certificate Generation and Management Tool Configuration
#
# default mode to non-interactive
# interactive = false
# location of 'tls' directory relative to configuration dir
# tlsDir = ./tls
# encryptCA = false - XXX not-implemented
# encryptCrt = false - XXX not-implemented
# default valid lifetime duration for CA certificates
# caDays = 1825
# default valid lifetime duration for certificates
# crtDays = 365
# default key types generated
# keyType = rsa
# default key size generated
# keySize = 2048
# default type of message digest used
# msgDigest = sha1
# to set individual defaults, a specific identity may be indicated
# on the net-snmp-cert command line: '--identity <id>' or '-i <id>'
# values defined at the global/file level will be used unless
# overriden by values supplied in the specified identity.
identity = {
id = nocadm
host = net-snmp.org
cn = Client-identity
email = admin@net-snmp.org
org = Net-SNMP Developers
orgUnit = SNMP-DTLS
country = US
state = MA
locality = Boston
# 10 years
caDays = 3654
# 2 years
crtDays = 730
subjectAltName = email:client@net-snmp.org
subjectAltName = URI:http://net-snmp.org
};
identity = {
id = CA-identity
host = net-snmp.org
cn = CA-identity
email = ca-admin@net-snmp.org
org = Net-SNMP Developers
orgUnit = SNMP-DTLS
country = US
state = MA
locality = Boston
# 10 years
caDays = 1000
# 2 years
crtDays = 500
subjectAltName = DNS:test.net-snmp.org
};
|
