diff options
author | Endi S. Dewata <edewata@redhat.com> | 2017-07-21 04:32:58 +0200 |
---|---|---|
committer | Endi S. Dewata <edewata@redhat.com> | 2017-07-21 04:32:58 +0200 |
commit | d62ea0eca2a05a7059f071296250c63e9ea9b347 (patch) | |
tree | f1516e945bf0e3098999c900bc0d5b36e84aaa90 /scripts/ca-external-step2.sh | |
parent | 810406fecc39b0214af5d21fee0ca8beb9568f98 (diff) | |
download | pki-dev-d62ea0eca2a05a7059f071296250c63e9ea9b347.tar.gz pki-dev-d62ea0eca2a05a7059f071296250c63e9ea9b347.tar.xz pki-dev-d62ea0eca2a05a7059f071296250c63e9ea9b347.zip |
Added CMC scripts.
Diffstat (limited to 'scripts/ca-external-step2.sh')
-rwxr-xr-x | scripts/ca-external-step2.sh | 51 |
1 files changed, 43 insertions, 8 deletions
diff --git a/scripts/ca-external-step2.sh b/scripts/ca-external-step2.sh index 801bd1f..a45afdc 100755 --- a/scripts/ca-external-step2.sh +++ b/scripts/ca-external-step2.sh @@ -1,13 +1,48 @@ #!/bin/sh -x -cp ca_signing.crt /tmp -cp external.crt /tmp -cp cert_chain.p7b /tmp +mkdir -p tmp -#cp level1.crt /tmp -#cp level2.crt /tmp +cat > tmp/ca-external-step2.cfg << EOF +#[DEFAULT] +#pki_instance_name=pki-child +#pki_pin=Secret.123 -#cp example.crt /tmp -#cp example2.p7b /tmp +[CA] +pki_admin_email=caadmin@example.com +pki_admin_name=caadmin +pki_admin_nickname=caadmin +pki_admin_password=Secret.123 +pki_admin_uid=caadmin -pkispawn -vv -f ca-external-step2.cfg -s CA +pki_backup_keys=True +pki_backup_password=Secret.123 + +pki_client_database_password=Secret.123 +pki_client_database_purge=False +pki_client_pkcs12_password=Secret.123 + +pki_ds_base_dn=dc=ca,dc=pki,dc=example,dc=com +pki_ds_database=ca +pki_ds_password=Secret.123 + +pki_security_domain_name=EXAMPLE +pki_token_password=Secret.123 + +pki_external=True +pki_external_step_two=True +pki_external_csr_path=$PWD/tmp/ca_signing.csr +pki_external_ca_cert_path=$PWD/tmp/ca_signing.crt + +pki_external_ca_cert_chain_nickname=external +pki_external_ca_cert_chain_path=$PWD/tmp/external.crt +#pki_external_ca_cert_chain_path=$PWD/tmp/cert_chain.p7b +#pki_external_ca_cert_chain_path=$PWD/tmp/level2.crt + +pki_ca_signing_nickname=ca_signing +pki_ocsp_signing_nickname=ca_ocsp_signing +pki_audit_signing_nickname=ca_audit_signing +pki_ssl_server_nickname=sslserver +pki_subsystem_nickname=subsystem +EOF + +pkispawn -vv -f tmp/ca-external-step2.cfg -s CA |