starred/mkcert
1
0
Fork 0
mirror of https://github.com/FiloSottile/mkcert.git synced 2026-04-25 13:36:02 +03:00
Code Issues 165 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #204] How to customize CN? #131

New issue
Closed
opened 2026-02-25 22:32:41 +03:00 by kerem · 3 comments
kerem commented 2026-02-25 22:32:41 +03:00
Owner
Copy link

Originally created by @ddnexus on GitHub (Oct 8, 2019).
Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/204

I need a certificate with a specific Common Name. I didn't find any doc about that. Is it possible to customize? Thanks.

Originally created by @ddnexus on GitHub (Oct 8, 2019). Original GitHub issue: https://github.com/FiloSottile/mkcert/issues/204 I need a certificate with a specific Common Name. I didn't find any doc about that. Is it possible to customize? Thanks.
kerem closed this issue 2026-02-25 22:32:41 +03:00
kerem commented 2026-02-25 22:32:41 +03:00
Author
Owner
Copy link

@FiloSottile commented on GitHub (Nov 9, 2019):

We don't support this, you can see some of the reasons at #205

<!-- gh-comment-id:552144096 --> @FiloSottile commented on GitHub (Nov 9, 2019): We don't support this, you can see some of the reasons at #205
kerem commented 2026-02-25 22:32:41 +03:00
Author
Owner
Copy link

@ddnexus commented on GitHub (Nov 10, 2019):

Thanks for your answer.

We understood that trying to use mkcert for our particular case was not a good idea for quite a few reasons.

We opt for a quite simple custom script that automates the creation of the CA root + a star-domain certificate and their addition to proxy server, java-truststore, FF trustore, etc.

<!-- gh-comment-id:552155492 --> @ddnexus commented on GitHub (Nov 10, 2019): Thanks for your answer. We understood that trying to use mkcert for our particular case was not a good idea for quite a few reasons. We opt for a quite simple custom script that automates the creation of the CA root + a star-domain certificate and their addition to proxy server, java-truststore, FF trustore, etc.
kerem commented 2026-02-25 22:32:41 +03:00
Author
Owner
Copy link

@DoraTheExploder commented on GitHub (Aug 7, 2025):

I've discovered that if you use an external tool to generate a Certificate Signing Request (.csr) such as DigiCert CSR Tool (or do it manually with openssl), you can customize the relevant fields and then pass it as a sort of configuration file to mkcert with $ mkcert -csr <domain>.

I have not tested using a CSR for initial Root CA installation, but $ mkcert --help implies that it should be possible.

<!-- gh-comment-id:3165329290 --> @DoraTheExploder commented on GitHub (Aug 7, 2025): I've discovered that if you use an external tool to generate a Certificate Signing Request (.csr) such as [DigiCert CSR Tool](https://www.digicert.com/easy-csr/openssl.htm) (or do it manually with openssl), you can customize the relevant fields and then pass it as a sort of configuration file to mkcert with `$ mkcert -csr <domain>`. I have not tested using a CSR for initial Root CA installation, but `$ mkcert --help` implies that it should be possible.
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
v1.4.4
v1.4.3
v1.4.2
v1.4.1
v1.4.0
v1.3.0
v1.2.0
v1.1.2
v1.1.1
v1.1.0
v1.0.1
v1.0.0
v0.9.1
v0.9.0
Labels
Clear labels   
TLS stack issue

   
Windows

   
bug

   
duplicate

   
duplicate

   
enhancement

   
help wanted

   
help wanted

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
question

   
root store

   
waiting for info
No labels
TLS stack issue
Windows
bug
duplicate
duplicate
enhancement
help wanted
help wanted
pull-request
question
question
root store
waiting for info
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/mkcert#131
No description provided.