Differences

This shows you the differences between two versions of the page.

--- step_ca [2025/08/03 08:55] – herwarth
+++ step_ca [2025/08/03 10:26] (current) – [Manual certificate creation] herwarth
@@ Line 62: / Line 62: @@
 </code>
+====Compose file====
+<code - docker-compose.yml>
+version: '3.2'
+services:
+  step-ca:
+    image: smallstep/step-ca
+    container_name: step-ca
+    hostname: step-ca
+    restart: unless-stopped
+    ports:
+      - "172.16.1.60:9000:9000"
+      - "172.16.1.60:9001:9001"
+    volumes:
+      - ./data:/home/step
+    networks:
+      - dmz
+    healthcheck:
+      test: [ "CMD", "curl", "-k", "https://172.16.1.60:9000/health" ]
+      timeout: 30s
+      interval: 10s
+      retries: 6
+networks:
+  dmz:
+    external: true
+</code>
+====Manual certificate creation====
+<code>
+docker exec -ti step-ca bash
+step certificate create nas.mgmt.internal certs/nas.mgmt.internal.crt secrets/nas.mgmt.internal.key --kty=RSA --no-password --insecure --ca=certs/intermediate_ca.crt --ca-key=secrets/intermediate_ca_key --san=nas.mgmt.internal --san=nas.local.internal --san=172.16.3.10 --san=172.16.2.10
+</code>
 {{tag>linux}}