diff options
Diffstat (limited to 'dogtag-9/ca-include.sh')
-rwxr-xr-x | dogtag-9/ca-include.sh | 43 |
1 files changed, 43 insertions, 0 deletions
diff --git a/dogtag-9/ca-include.sh b/dogtag-9/ca-include.sh new file mode 100755 index 0000000..8d2c454 --- /dev/null +++ b/dogtag-9/ca-include.sh @@ -0,0 +1,43 @@ +#!/bin/sh -x + +SRC_DIR="`cd ../.. ; pwd`" + +DOMAIN="example.com" +REALM="EXAMPLE-COM" +PASSWORD="Secret123" + +INSTANCE_ROOT="/var/lib" +INSTANCE_USER="pkiuser" +INSTANCE_GROUP="pkiuser" + +CA_INSTANCE_NAME="pki-ca" + +CA_SUBSYSTEM_TYPE="ca" +CA_SUBSYSTEM_NAME="Certificate Authority" + +CA_SECURE_PORT="9443" +CA_AGENT_SECURE_PORT="9443" +CA_EE_SECURE_PORT="9444" +CA_ADMIN_SECURE_PORT="9445" +CA_EE_SECURE_CLIENT_AUTH_PORT="9446" +CA_UNSECURE_PORT="9180" +CA_TOMCAT_SERVER_PORT="9701" + +CA_LDAP_HOST="$HOSTNAME" +CA_LDAP_PORT="389" +CA_LDAP_DATABASE="$DOMAIN-$INSTANCE_NAME" +CA_LDAP_BASE_DN="ou=ca,dc=example,dc=com" +CA_LDAP_BIND_DN="cn=Directory Manager" +CA_LDAP_PASSWORD="$PASSWORD" + +CA_SIGN_CERT_SUBJECT_NAME="CN=$CA_SUBSYSTEM_NAME,O=$REALM" +CA_OCSP_CERT_SUBJECT_NAME="CN=OCSP Signing Certificate,O=$REALM" +CA_SERVER_CERT_SUBJECT_NAME="CN=$HOSTNAME,O=$REALM" +CA_SUBSYSTEM_CERT_SUBJECT_NAME="CN=CA Subsystem Certificate,O=$REALM" +CA_AUDIT_SIGNING_CERT_SUBJECT_NAME="CN=CA Audit Signing Certificate,O=$REALM" + +CA_ADMIN_USER="caadmin" +CA_ADMIN_NAME="$CA_ADMIN_USER" +CA_ADMIN_EMAIL="$CA_ADMIN_USER@$DOMAIN" +CA_ADMIN_PASSWORD="$PASSWORD" +CA_ADMIN_CERT_SUBJECT="CN=$CA_ADMIN_NAME,UID=$CA_ADMIN_USER,E=$CA_ADMIN_EMAIL,O=$REALM" |