Certificate tool for Sysadmins
Project description
Description
Easy-to-use tool for certificate management. To make data flow simple, it does not support metadata rewrite during signing, all data should be correct in certificate request.
Features
No interactive data entry.
Simple command-line UI.
Good defaults, sets up common extensions automatically.
PGP- and password-protected private keys.
OCSP and CRL info settings.
Supports both EC and RSA keys.
Dependencies
Python cryptography module (version >= 1.2).
(Optional) gpg command-line tool to decrypt files.
(Optional) openssl command-line tool to show CRT/CSR contents.
Summary
Generate new key:
sysca new-key [--password-file TXT_FILE] [--out DST] sysca new-key ec[:<curve>] [--password-file TXT_FILE] [--out DST] sysca new-key rsa[:<bits>] [--password-file TXT_FILE] [--out DST]
Create certificate signing request:
sysca request --key KEY_FILE [--password-file TXT_FILE] [--subject DN] [--san ALTNAMES] [--CA] [--path-length DEPTH] [--usage FLAGS] [--ocsp-url URLS] [--crl-url URLS] [--issuer-cert-url URLS] [--out CSR_FN]
Create selfsigned certificate:
sysca selfsign --key KEY_FILE --days N [--password-file TXT_FILE] [--subject DN] [--san ALTNAMES] [--CA] [--path-length DEPTH] [--usage FLAGS] [--ocsp-url URLS] [--crl-url URLS] [--issuer-cert-url URLS] [--out CRT_FN]
Sign certificate signing request:
sysca sign --ca-key KEY_FILE --ca-info CRT_FILE --request CSR_FILE --days NUM [--out CRT_FN] [--password-file TXT_FILE]
Display contents of CSR or CRT file:
sysca show FILE
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.