A/b:n Re;gard - Blog

Personal notes and musings

This page will most likely serve as a stow-away site for me to put documentation and other tech-findings.


Install Arch WSL on Windows 10, maybe 11.

This page will most likely serve as a stow-away site for me to put documentation and other tech-findings.

Download

Invoke-WebRequest -Uri "https://github.com/yuk7/ArchWSL/releases/download/22.10.16.0/Arch.zip" -OutFile C:\Temp\Arch.zip

Unzip

Expand-Archive -Path "C:\Temp\Arch.zip" -DestinationPath "C:\Arch"

Install

.\Arch.exe

Enable sudo for linux

[root@PC-NAME]# echo "%wheel ALL=(ALL) ALL" > /etc/sudoers.d/wheel

[root@PC-NAME]# useradd -m -G wheel -s /bin/bash {username}

[root@PC-NAME]# exit

Arch.exe config --default-user {username}

Arch.exe

[user@PC-NAME]$ sudo pacman-key --init

[user@PC-NAME]$ sudo pacman-key --populate

[user@PC-NAME]$ sudo pacman -Sy archlinux-keyring

[user@PC-NAME]$ sudo pacman -Su


Create a Configuration File (csr.conf)

Create a configuration file, for example, csr.conf, with the following content. Replace the placeholder values with your specific information.

	        
	[req]
	default_bits = 2048
	default_md = sha256
	distinguished_name = req_distinguished_name
	req_extensions = v3_req
	prompt = no
	
	[req_distinguished_name]
	C = Sweden
	ST = N/A
	L = Locality
	O = Organization
	OU = OrganizationalUnit
	CN = CommonName
	emailAddress = e@mail.com
	
	[v3_req]
	keyUsage = keyEncipherment, dataEncipherment
	extendedKeyUsage = serverAuth
	subjectAltName = @alt_names
	
	[alt_names]
	DNS.1 = example.com
	DNS.2 = www.example.com
	DNS.3 = subdomain.example.com
	        
	    

Customize the values under [req_distinguished_name] and [alt_names] to match your organization and domain details. You can add more DNS.x entries for additional SANs.

Generate the Private Key

Use the following command to generate a private key:

openssl genpkey -algorithm RSA -ae256 -out private-key.pem

Generate the CSR

Use the following command to generate a CSR:

openssl req -new -utf8 -key private-key.pem -out csr.pem -config csr.conf

This command will use the configuration file (csr.conf) and the private key (private-key.pem) to create the CSR (csr.pem).

Review the CSR

You can view the content of the CSR using:

openssl req -text -noout -in csr.pem