authelia crypto certificate ecdsa generate

authelia crypto certificate ecdsa generate

Generate an ECDSA private key and certificate

Synopsis

Generate an ECDSA private key and certificate.

This subcommand allows generating an ECDSA private key and certificate.

authelia crypto certificate ecdsa generate [flags]

Examples

authelia crypto certificate ecdsa generate --help

Options

      --bundles strings                 enables generating bundles options are 'chain' and 'privkey-chain'
      --ca                              create the certificate as a certificate authority certificate
  -n, --common-name string              certificate common name
      --country strings                 certificate country
  -b, --curve string                    Sets the elliptic curve which can be P224, P256, P384, or P521 (default "P256")
  -d, --directory string                directory where the generated keys, certificates, etc will be stored
      --duration string                 duration of time the certificate is valid for (default "1y")
      --extended-usage strings          specify the extended usage types of the certificate
      --file.bundle.chain string        name of the file to export the certificate chain PEM bundle to when the --bundles flag includes 'chain' (default "public.chain.pem")
      --file.bundle.priv-chain string   name of the file to export the certificate chain and private key PEM bundle to when the --bundles flag includes 'priv-chain' (default "private.chain.pem")
      --file.ca-certificate string      certificate authority certificate to use when signing this certificate (default "ca.public.crt")
      --file.ca-private-key string      certificate authority private key to use to signing this certificate (default "ca.private.pem")
      --file.certificate string         name of the file to export the certificate data to (default "public.crt")
      --file.extension.legacy string    string to include before the actual extension as a sub-extension on the PKCS#1 and SECG1 legacy formats (default "legacy")
      --file.private-key string         name of the file to export the private key data to (default "private.pem")
  -h, --help                            help for generate
      --legacy                          enables the output of the legacy PKCS#1 and SECG1 formats when enabled
  -l, --locality strings                certificate locality
      --not-after string                latest date and time the certificate is considered valid in various formats
      --not-before string               earliest date and time the certificate is considered valid in various formats (default is now)
  -o, --organization strings            certificate organization (default [Authelia])
      --organizational-unit strings     certificate organizational unit
      --path.ca string                  source directory of the certificate authority files, if not provided the certificate will be self-signed
  -p, --postcode strings                certificate postcode
      --province strings                certificate province
      --sans strings                    subject alternative names
      --signature string                signature algorithm for the certificate (default "SHA256")
  -s, --street-address strings          certificate street address

Options inherited from parent commands

  -c, --config strings                        configuration files or directories to load, for more information run 'authelia -h authelia config' (default [configuration.yml])
      --config.experimental.filters strings   list of filters to apply to all configuration files, for more information run 'authelia -h authelia filters'

SEE ALSO