我正在编写一个 shell 脚本来使用 openssl 签署证书:
openssl ca -config "$CONF" -out "$BOXCERT" -infiles "$CSRFILE"
但是,在运行它时,openssl 总是询问我是否要签署证书:
Certificate is to be certified until Mar 19 11:50:33 2023 GMT (3653 days)
Sign the certificate? [y/n]:y
1 out of 1 certificate requests certified, commit? [y/n]y
Write out database with 1 new entries
Data Base Updated
我希望脚本在服务器中以非交互方式运行。是否有一些命令行参数或配置文件选项告诉 OpenSSL 签署证书并在不提示的情况下提交它?