Get the default configuration file renew-dummy-cert for OpenSSL, optimized for CentOS Linux 7. This example configuration ensures optimal compatibility and performance for OpenSSL, making it easy to set up and adjust to meet your needs.
Find and download the configuration file here: /etc/pki/tls/certs/renew-dummy-cert.
For more configurations and setup guides, visit our related files section to further customize your system.
#!/bin/bash
if [ $# -eq 0 ]; then
echo $"Usage: `basename $0` filename" 1>&2
exit 1
fi
PEM=$1
REQ=`/bin/mktemp /tmp/openssl.XXXXXX`
KEY=`/bin/mktemp /tmp/openssl.XXXXXX`
CRT=`/bin/mktemp /tmp/openssl.XXXXXX`
NEW=${PEM}_
trap "rm -f $REQ $KEY $CRT $NEW" SIGINT
if [ ! -f $PEM ]; then
echo "$PEM: file not found" 1>&2
exit 1
fi
let -a SERIAL=0x$(openssl x509 -in $PEM -noout -serial | cut -d= -f2)
let SERIAL++
umask 077
OWNER=`ls -l $PEM | awk '{ printf "%s.%s", $3, $4; }'`
openssl rsa -inform pem -in $PEM -out $KEY
openssl x509 -x509toreq -in $PEM -signkey $KEY -out $REQ
openssl x509 -req -in $REQ -signkey $KEY -set_serial $SERIAL -days 365 \
-extfile /etc/pki/tls/openssl.cnf -extensions v3_ca -out $CRT
(cat $KEY ; echo "" ; cat $CRT) > $NEW
chown $OWNER $NEW
mv -f $NEW $PEM
rm -f $REQ $KEY $CRT
exit 0
Download the raw file with wget or curl
wget -O renew-dummy-cert.example https://exampleconfig.com/static/raw/openssl/centos7/etc/pki/tls/certs/renew-dummy-cert
curl https://exampleconfig.com/static/raw/openssl/centos7/etc/pki/tls/certs/renew-dummy-cert > renew-dummy-cert.example
Other config files you might find useful
