-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathtestTool.ps1
33 lines (15 loc) · 1.58 KB
/
testTool.ps1
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
$folderName = "c:\$(([GUID]::NewGuid()).Guid)"
md $folderName | Out-Null
#Write-Host "New Base $($folderName)"
$baseP = $folderName
$py = "$($PSScriptRoot )\DoCAStuff.py"
#CreateTlsCsr
$did = & python $py --mode CreateTlsCsr --name "www.bob.com" --validfrom janOf2018 --validto janOf2048 --keysize 521 --pathlength 2 --basepath "$($baseP)\" --cps "http://birds.com" --kus "key_encipherment,digital_signature" --ekus "CODE_SIGNING,SERVER_AUTH" --sans "www.bob.com,www.cob.com"
$did = & python $py --mode NewRootCA --name "Gamache Trust Root 2018" --validfrom janOf2018 --validto janOf2048 --keysize 521 --pathlength 2 --ncallowed "pkilab.markgamache.com,mtlspkilab.markgamache.com,bankofplace" --basepath "$($baseP)\" --cps "http://birds.com" --kus "key_encipherment,digital_signature" --ekus "CODE_SIGNING,SERVER_AUTH"
$did = & python $py --mode NewSubCA --name "HullaHoop" --signer "Gamache Trust Root 2018" --validfrom janOf2018 --validto janOf2048 --keysize 2048 --pathlength 2 --ncallowed "pkilab.markgamache.com,mtlspkilab.markgamache.com,bankofplace" --basepath "$($baseP)\" --cps "http://birds.com" # --kus "key_encipherment,digital_signature" # --ekus "CODE_SIGNING,SERVER_AUTH"
$did = & python $py --mode NewLeafTLS --basepath "$($baseP)\" --name "gustice.pkilab.markgamache.com" --signer "HullaHoop" --validfrom dtMinusTenMin --validto dtPlusOneYear --keysize 256 --kus "key_encipherment,digital_signature" --ekus "CODE_SIGNING,SERVER_AUTH"
$caBack = $did | ConvertFrom-Json
#$caBack
openssl x509 -noout -text -in "$($caBack.DERFile)" -inform DER
rm $folderName -Force -Recurse
write-host