#!/bin/bash # where do we belong? (must match the setting of the ca) subject_prefix='/C=DE/ST=Thuringia/L=Jena/O=Eckner/OU=Net' # ignore these hosts ignore_hosts=('localhost') # where should the certificates be requested? ca_host='user@ca.example.com' # which user owns the certificates (not root) certificate_user='http' # directory of the webserver - must be reachable via https://$host/.csr/ webserver_dir='/srv/http/httpdocs/.csr'