kotovalexarian-likes-github/moby--moby
1
0
Fork 0
mirror of https://github.com/moby/moby.git synced 2022-11-09 12:21:53 -05:00
Code Releases Activity

added -extfile to server certificate documentation for support of

Browse source 
subjectAltName=IP:x.x.x.x
this allows for connecting to the docker server from docker client
using the dns name OR using the IP address (lots of docker stuff
prefers IP addresses)

Signed-off-by: Greg Fausak <greg@tacodata.com>
This commit is contained in:
Greg Fausak 2015-02-11 16:01:43 +00:00 committed by Sven Dowideit
parent f4749acad4
commit df8d807102
1 changed files with 8 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

9
docs/sources/articles/https.md
View file

@ -71,8 +71,15 @@ name) matches the hostname you will use to connect to Docker:
Next, we're going to sign the public key with our CA:
Since tls connections can be made via IP address as well as dns name,
this extension allows for your client to connect via IP address. You will
need to replace $YOUR_IP_ADDRESS with your IP address. If there
is more than one simply continue to add them separated by commas.
$ echo subjectAltName = IP:$YOUR_PUBLIC_IP > extfile.cnf
$ openssl x509 -req -days 365 -in server.csr -CA ca.pem -CAkey ca-key.pem \
-CAcreateserial -out server-cert.pem
-CAcreateserial -out server-cert.pem -extfile extfile.cnf
Signature ok
subject=/CN=your.host.com
Getting CA Private Key