From d57fd66d687211a0fa62ad515872749d2946bb8e Mon Sep 17 00:00:00 2001
From: "Endi S. Dewata" <edewata@redhat.com>
Date: Thu, 20 Jul 2017 08:03:44 +0200
Subject: Added vault scripts.

---
 scripts/vault-init.sh | 10 ++++++++++
 1 file changed, 10 insertions(+)
 create mode 100755 scripts/vault-init.sh

(limited to 'scripts/vault-init.sh')

diff --git a/scripts/vault-init.sh b/scripts/vault-init.sh
new file mode 100755
index 0000000..f6c5b4c
--- /dev/null
+++ b/scripts/vault-init.sh
@@ -0,0 +1,10 @@
+#!/bin/sh
+
+cd ~/.dogtag/pki-tomcat
+
+# export CA admin cert
+openssl pkcs12 -nodes -in ca_admin_cert.p12 -out ca_admin_cert.pem -password file:ca/password.conf
+
+# get transport cert
+certutil -L -d /var/lib/pki/pki-tomcat/alias -n "transportCert cert-pki-tomcat KRA" -a > transport.crt
+certutil -A -d ca/alias -n "KRA Transport Certificte" -i transport.crt -a -t "u,u,u"
-- 
cgit