diff options
author | Endi S. Dewata <edewata@redhat.com> | 2015-11-16 15:40:31 +0100 |
---|---|---|
committer | Endi S. Dewata <edewata@redhat.com> | 2015-11-16 15:40:31 +0100 |
commit | 1861d6a1e37e60362cd0469dc29a7d601109a831 (patch) | |
tree | f0df55fdc444b0d9895d2248beb6544e0a6958dc | |
parent | c3324d0bed4e103afe1bed43ac1e134642ecaa9b (diff) | |
download | pki-dev-1861d6a1e37e60362cd0469dc29a7d601109a831.tar.gz pki-dev-1861d6a1e37e60362cd0469dc29a7d601109a831.tar.xz pki-dev-1861d6a1e37e60362cd0469dc29a7d601109a831.zip |
Added scripts for existing CA.
-rwxr-xr-x | scripts/existing-export.sh | 3 | ||||
-rw-r--r-- | scripts/existing-step1.cfg | 19 | ||||
-rwxr-xr-x | scripts/existing-step1.sh | 8 | ||||
-rw-r--r-- | scripts/existing-step2.cfg | 22 | ||||
-rwxr-xr-x | scripts/existing-step2.sh | 8 |
5 files changed, 60 insertions, 0 deletions
diff --git a/scripts/existing-export.sh b/scripts/existing-export.sh new file mode 100755 index 0000000..e3080c7 --- /dev/null +++ b/scripts/existing-export.sh @@ -0,0 +1,3 @@ +#!/bin/sh -x + +pki-server subsystem-cert-export ca signing --pkcs12-file ca.p12 --pkcs12-password-file password.txt --csr-file ca_signing.csr diff --git a/scripts/existing-step1.cfg b/scripts/existing-step1.cfg new file mode 100644 index 0000000..2ff209c --- /dev/null +++ b/scripts/existing-step1.cfg @@ -0,0 +1,19 @@ +[CA] +pki_admin_email=caadmin@example.com +pki_admin_name=caadmin +pki_admin_nickname=caadmin +pki_admin_password=Secret123 +pki_admin_uid=caadmin +pki_backup_keys=True +pki_backup_password=Secret123 +pki_client_database_password=Secret123 +pki_client_database_purge=False +pki_client_pkcs12_password=Secret123 +pki_ds_base_dn=dc=ca,dc=example,dc=com +pki_ds_database=ca +pki_ds_password=Secret123 +pki_security_domain_name=EXAMPLE +pki_token_password=Secret123 + +pki_external=True +pki_external_step_two=False diff --git a/scripts/existing-step1.sh b/scripts/existing-step1.sh new file mode 100755 index 0000000..422febb --- /dev/null +++ b/scripts/existing-step1.sh @@ -0,0 +1,8 @@ +#!/bin/sh -x + +mkdir -p build + +rm -rf /tmp/ca_signing.csr +rm -rf /tmp/ca.p12 + +pkispawn -v -f existing-step1.cfg -s CA 2>&1 | tee build/existing-step1.log diff --git a/scripts/existing-step2.cfg b/scripts/existing-step2.cfg new file mode 100644 index 0000000..94dd951 --- /dev/null +++ b/scripts/existing-step2.cfg @@ -0,0 +1,22 @@ +[CA] +pki_admin_email=caadmin@example.com +pki_admin_name=caadmin +pki_admin_nickname=caadmin +pki_admin_password=Secret123 +pki_admin_uid=caadmin +pki_backup_keys=True +pki_backup_password=Secret123 +pki_client_database_password=Secret123 +pki_client_database_purge=False +pki_client_pkcs12_password=Secret123 +pki_ds_base_dn=dc=ca,dc=example,dc=com +pki_ds_database=ca +pki_ds_password=Secret123 +pki_security_domain_name=EXAMPLE +pki_token_password=Secret123 + +pki_external=True +pki_external_step_two=True +pki_external_csr_path=/tmp/ca_signing.csr +pki_external_pkcs12=/tmp/ca.p12 +pki_external_pkcs12_password=Secret123 diff --git a/scripts/existing-step2.sh b/scripts/existing-step2.sh new file mode 100755 index 0000000..079d2c9 --- /dev/null +++ b/scripts/existing-step2.sh @@ -0,0 +1,8 @@ +#!/bin/sh -x + +mkdir -p build + +/bin/cp -f ca_signing.csr /tmp +/bin/cp -f ca.p12 /tmp + +pkispawn -v -f existing-step2.cfg -s CA 2>&1 | tee build/existing-step2.log |