1There is often a need to generate test certificates automatically using 2a script. This is often a cause for confusion which can result in incorrect 3CA certificates, obsolete V1 certificates or duplicate serial numbers. 4The range of command line options can be daunting for a beginner. 5 6The mkcerts.sh script is an example of how to generate certificates 7automatically using scripts. Example creates a root CA, an intermediate CA 8signed by the root and several certificates signed by the intermediate CA. 9 10The script then creates an empty index.txt file and adds entries for the 11certificates and generates a CRL. Then one certificate is revoked and a 12second CRL generated. 13 14The script ocsprun.sh runs the test responder on port 8888 covering the 15client certificates. 16 17The script ocspquery.sh queries the status of the certificates using the 18test responder. 19
