ref: 4732506cc81c04ff31abb35e93cd9357a6650424
parent: 921a47cd20dc7e0010838fa6afedb62d9510af8c
author: jrmu <jrmu@cloud9p.org>
date: Sun Sep 22 17:46:22 EDT 2024
Add instructions for requesting signed ssl certs using acmed
--- /dev/null
+++ b/acmed.ms
@@ -1,0 +1,20 @@
+This guide is not yet finished
+
+cpu% ramfs -p
+cpu% cd /tmp
+cpu% auth/rsagen -t 'service=acme role=sign hash=sha256 acct=username@example.com' > username@example.com.key
+cpu% auth/rsa2jwk username@example.com.key > /sys/lib/tls/acmed/username@example.com.pub
+% cd /tmp
+% auth/secstore -g factotum
+secstore password:
+% cat username@example.com.key >> factotum
+% auth/secstore -v -p factotum
+secstore password:
+% read -m factotum > /mnt/factotum/ctl
+
+cpu% auth/rsagen -t 'service=tls owner=*' > example.com.key
+cpu% chmod 600 username@example.com.key example.com.key
+cp username@example.com.key example.com.key /sys/lib/tls/acmed/
+cpu% auth/rsa2csr 'CN=example.com' /sys/lib/tls/acmed/example.com.key >/sys/lib/tls/acmed/example.com.csr
+auth/acmed -t http -o /usr/web/.well-known/acme-challenge username@example.com /sys/lib/tls/acmed/example.com.csr >/sys/lib/tls/acmed/example.com.crt
+