docs: Adopt the script docs to create certs (#9)

* docs: Adapt the cert documentation
* docs: Add more generic information about certificates

Author: ZPascal

scripts/ssl/EXAMPLE-CERT-CREATION.md

@@ -4,6 +4,10 @@
 
 Please execute the following script `bash create-tls-certs.sh` to create all necessary certificates for the complete setup of all related components.
 
+## Adaptation
+
+Please adjust the configuration files inside the [config](./config) folder and adapt the corresponding values for the req_distinguished_names and subjectAltNames based on your organisation and configuration. You can find [here](https://support.dnsimple.com/articles/what-is-common-name/) and [here](https://learn.microsoft.com/en-us/azure/application-gateway/self-signed-certificates) more information about the corresponding values and CA certificates in general.
+
 ## Ca Certificates
 
 ### Loki

scripts/ssl/config/ca_loki.conf

@@ -12,8 +12,7 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ ext ]
+[ext]
 subjectKeyIdentifier=hash
 authorityKeyIdentifier=keyid:always,issuer
 basicConstraints = critical, CA:TRUE, pathlen:3

scripts/ssl/config/ca_promtail.conf

@@ -12,7 +12,7 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-[ ext ]
+[ext]
 subjectKeyIdentifier=hash
 authorityKeyIdentifier=keyid:always,issuer
 basicConstraints = critical, CA:TRUE, pathlen:3

scripts/ssl/config/ca_syslog.conf

@@ -12,8 +12,7 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ ext ]
+[ext]
 subjectKeyIdentifier=hash
 authorityKeyIdentifier=keyid:always,issuer
 basicConstraints = critical, CA:TRUE, pathlen:3

scripts/ssl/config/client_loki.conf

@@ -13,7 +13,6 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ v3_req  ]
+[v3_req]
 keyUsage = keyEncipherment, dataEncipherment, digitalSignature
 extendedKeyUsage = serverAuth, clientAuth

scripts/ssl/config/client_promtail.conf

@@ -13,7 +13,6 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ v3_req  ]
+[v3_req]
 keyUsage = keyEncipherment, dataEncipherment, digitalSignature
 extendedKeyUsage = serverAuth, clientAuth

scripts/ssl/config/client_syslog.conf

@@ -13,7 +13,6 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ v3_req  ]
+[v3_req]
 keyUsage = keyEncipherment, dataEncipherment, digitalSignature
 extendedKeyUsage = serverAuth, clientAuth

scripts/ssl/config/server_loki.conf

@@ -13,8 +13,7 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ v3_req  ]
+[v3_req]
 keyUsage = keyEncipherment, dataEncipherment, digitalSignature
 extendedKeyUsage = serverAuth, clientAuth
-subjectAltName=IP:<IP address of the Loki server> DNS:<DNS address of the Loki server>
+subjectAltName=IP:<IP address of the Loki server> or DNS:<DNS address of the Loki server>

scripts/ssl/config/server_promtail.conf

@@ -13,8 +13,7 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ v3_req  ]
+[v3_req]
 keyUsage = keyEncipherment, dataEncipherment, digitalSignature
 extendedKeyUsage = serverAuth, clientAuth
-subjectAltName=IP:0.0.0.0, DNS:<DNS address of the Promtail server>
+subjectAltName=IP:0.0.0.0, DNS:<DNS address of the Promtail server> or IP1:<IP address of the Promtail server>

scripts/ssl/config/server_syslog.conf

@@ -13,8 +13,7 @@ O = TheIOTStudio
 CN = TIS Promtail CA
 emailAddress = [email protected]
 
-
-[ v3_req  ]
+[v3_req]
 keyUsage = keyEncipherment, dataEncipherment, digitalSignature
 extendedKeyUsage = serverAuth, clientAuth
-subjectAltName=DNS:<DNS address of the Promtail Syslog server>
+subjectAltName=DNS:<DNS address of the Promtail Syslog server> or IP:<IP address of the Promtail Syslog server>