Skip to content
This repository has been archived by the owner on Apr 27, 2023. It is now read-only.

Latest commit

 

History

History
30 lines (28 loc) · 1004 Bytes

TLS.md

File metadata and controls

30 lines (28 loc) · 1004 Bytes
Raw

Threatseer over mutual TLS

  1. Get certstrap to make your certs: 
    go get -u github.com/square/certstrap
  2. Make your CA: 
    certstrap init --common-name "threatseer CA"
  3. Make make a request for the server: 
    certstrap request-cert --domain threatseer
  4. Mint and sign the key and cert for server : The last argument, threatseer, is your common name (CN). Expected CN can be overridden on both the agent and server. 
    bin/certstrap sign --CA "threatseer CA" threatseer
  5. Make make a request for the agent: The last argument, agent, is your common name (CN). Expected CN can be overridden on both the agent and server. 
    certstrap request-cert --domain agent
  6. Mint and sign the key and cert for agent : 
    bin/certstrap sign --CA "threatseer CA" agent

The files will be placed in a directory called out.