3 KEYDIR
=/afs
/hcoop.net
/common
/etc
/domtool
/keys
/$1
4 KEYFILE
=$KEYDIR/key.pem
5 CERTFILE
=/afs
/hcoop.net
/common
/etc
/domtool
/certs
/$1.pem
10 mkdir
$KEYDIR ||
echo Already exists
11 openssl genrsa
-out $KEYFILE
12 chown
-R domtool.domtool
$KEYDIR
19 echo "$1@hcoop.net" >>$KEYIN
22 openssl req
-new -key $KEYFILE -out $NEWREQ -days 365 <$KEYIN
24 cat $NEWREQ $KEYFILE >$NEW
26 openssl ca
-batch -config /etc
/domtool
/openssl.cnf
-policy policy_anything
-out $CERTFILE -infiles $NEW
28 chown domtool.domtool
$CERTFILE