From 1611030335695bbc22ea7d965e97415aeacc44a3 Mon Sep 17 00:00:00 2001
From: "Endi S. Dewata" <edewata@redhat.com>
Date: Thu, 16 Jun 2016 21:17:59 +0200
Subject: Added CA agent script.

---
 scripts/ca-agent-setup.sh | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100755 scripts/ca-agent-setup.sh

(limited to 'scripts')

diff --git a/scripts/ca-agent-setup.sh b/scripts/ca-agent-setup.sh
new file mode 100755
index 0000000..a54621a
--- /dev/null
+++ b/scripts/ca-agent-setup.sh
@@ -0,0 +1,15 @@
+#!/bin/sh -x
+
+pki -d ~/.dogtag/pki-tomcat/ca/alias -c Secret123 -n caadmin ca-user-add caagent --fullName "CA Agent"
+pki -d ~/.dogtag/pki-tomcat/ca/alias -c Secret123 -n caadmin ca-group-member-add "Certificate Manager Agents" caagent
+
+REQUEST_ID=`pki -c Secret123 client-cert-request uid=caagent | grep "Request ID:" | awk -F ': ' '{print $2;}'`
+echo Request ID: $REQUEST_ID
+
+CERT_ID=`pki -d ~/.dogtag/pki-tomcat/ca/alias -c Secret123 -n caadmin ca-cert-request-review --action approve $REQUEST_ID | grep "Certificate ID:" | awk -F ': ' '{print $2;}'`
+echo Certificate ID: $CERT_ID
+
+pki -d ~/.dogtag/pki-tomcat/ca/alias -c Secret123 -n caadmin ca-user-cert-add caagent --serial $CERT_ID
+pki -c Secret123 client-cert-import caagent --serial $CERT_ID
+
+pki -c Secret123 client-cert-show caagent --pkcs12 caagent.p12 --pkcs12-password Secret123
-- 
cgit