Added DS scripts.

author: Endi S. Dewata <edewata@redhat.com> 2017-07-20 07:28:26 +0200
committer: Endi S. Dewata <edewata@redhat.com> 2017-07-20 07:28:26 +0200
commit: d2cc01d76e69f8d3602c5181263b95cbcd1c79a3 (patch)
tree: 7b136f1a76e2e808bc48332283054d9f05d4863d /scripts/ds-ssl-enable.sh
parent: c23e0e44df69e44cb21c0e564ff1a7e2a7b67fd5 (diff)
download: pki-dev-d2cc01d76e69f8d3602c5181263b95cbcd1c79a3.tar.gz
pki-dev-d2cc01d76e69f8d3602c5181263b95cbcd1c79a3.tar.xz
pki-dev-d2cc01d76e69f8d3602c5181263b95cbcd1c79a3.zip
1 files changed, 25 insertions, 0 deletions
diff --git a/scripts/ds-ssl-enable.sh b/scripts/ds-ssl-enable.sh
new file mode 100755
index 0000000..0124fe7
--- /dev/null
+++ b/scripts/ds-ssl-enable.sh
@@ -0,0 +1,25 @@
+#!/bin/sh -x
+
+# enable SSL
+ldapmodify -x -D "cn=Directory Manager" -w Secret123 <<EOF
+dn: cn=config
+changetype: modify
+replace: nsslapd-security
+nsslapd-security: on
+
+dn: cn=RSA,cn=encryption,cn=config
+changetype: add
+objectclass: top
+objectclass: nsEncryptionModule
+cn: RSA
+nsSSLPersonalitySSL: $HOSTNAME
+nsSSLToken: internal (software)
+nsSSLActivation: on
+EOF
+
+#dn: cn=encryption,cn=config
+#changetype: modify
+#add: nsSSL3Ciphers
+#nsSSL3Ciphers: +all
+
+systemctl restart dirsrv@pki-tomcat.service
author	Endi S. Dewata <edewata@redhat.com>	2017-07-20 07:28:26 +0200
committer	Endi S. Dewata <edewata@redhat.com>	2017-07-20 07:28:26 +0200
commit	d2cc01d76e69f8d3602c5181263b95cbcd1c79a3 (patch)
tree	7b136f1a76e2e808bc48332283054d9f05d4863d /scripts/ds-ssl-enable.sh
parent	c23e0e44df69e44cb21c0e564ff1a7e2a7b67fd5 (diff)
download	pki-dev-d2cc01d76e69f8d3602c5181263b95cbcd1c79a3.tar.gz pki-dev-d2cc01d76e69f8d3602c5181263b95cbcd1c79a3.tar.xz pki-dev-d2cc01d76e69f8d3602c5181263b95cbcd1c79a3.zip