From 1861d6a1e37e60362cd0469dc29a7d601109a831 Mon Sep 17 00:00:00 2001 From: "Endi S. Dewata" Date: Mon, 16 Nov 2015 15:40:31 +0100 Subject: Added scripts for existing CA. --- scripts/existing-export.sh | 3 +++ scripts/existing-step1.cfg | 19 +++++++++++++++++++ scripts/existing-step1.sh | 8 ++++++++ scripts/existing-step2.cfg | 22 ++++++++++++++++++++++ scripts/existing-step2.sh | 8 ++++++++ 5 files changed, 60 insertions(+) create mode 100755 scripts/existing-export.sh create mode 100644 scripts/existing-step1.cfg create mode 100755 scripts/existing-step1.sh create mode 100644 scripts/existing-step2.cfg create mode 100755 scripts/existing-step2.sh (limited to 'scripts') diff --git a/scripts/existing-export.sh b/scripts/existing-export.sh new file mode 100755 index 0000000..e3080c7 --- /dev/null +++ b/scripts/existing-export.sh @@ -0,0 +1,3 @@ +#!/bin/sh -x + +pki-server subsystem-cert-export ca signing --pkcs12-file ca.p12 --pkcs12-password-file password.txt --csr-file ca_signing.csr diff --git a/scripts/existing-step1.cfg b/scripts/existing-step1.cfg new file mode 100644 index 0000000..2ff209c --- /dev/null +++ b/scripts/existing-step1.cfg @@ -0,0 +1,19 @@ +[CA] +pki_admin_email=caadmin@example.com +pki_admin_name=caadmin +pki_admin_nickname=caadmin +pki_admin_password=Secret123 +pki_admin_uid=caadmin +pki_backup_keys=True +pki_backup_password=Secret123 +pki_client_database_password=Secret123 +pki_client_database_purge=False +pki_client_pkcs12_password=Secret123 +pki_ds_base_dn=dc=ca,dc=example,dc=com +pki_ds_database=ca +pki_ds_password=Secret123 +pki_security_domain_name=EXAMPLE +pki_token_password=Secret123 + +pki_external=True +pki_external_step_two=False diff --git a/scripts/existing-step1.sh b/scripts/existing-step1.sh new file mode 100755 index 0000000..422febb --- /dev/null +++ b/scripts/existing-step1.sh @@ -0,0 +1,8 @@ +#!/bin/sh -x + +mkdir -p build + +rm -rf /tmp/ca_signing.csr +rm -rf /tmp/ca.p12 + +pkispawn -v -f existing-step1.cfg -s CA 2>&1 | tee build/existing-step1.log diff --git a/scripts/existing-step2.cfg b/scripts/existing-step2.cfg new file mode 100644 index 0000000..94dd951 --- /dev/null +++ b/scripts/existing-step2.cfg @@ -0,0 +1,22 @@ +[CA] +pki_admin_email=caadmin@example.com +pki_admin_name=caadmin +pki_admin_nickname=caadmin +pki_admin_password=Secret123 +pki_admin_uid=caadmin +pki_backup_keys=True +pki_backup_password=Secret123 +pki_client_database_password=Secret123 +pki_client_database_purge=False +pki_client_pkcs12_password=Secret123 +pki_ds_base_dn=dc=ca,dc=example,dc=com +pki_ds_database=ca +pki_ds_password=Secret123 +pki_security_domain_name=EXAMPLE +pki_token_password=Secret123 + +pki_external=True +pki_external_step_two=True +pki_external_csr_path=/tmp/ca_signing.csr +pki_external_pkcs12=/tmp/ca.p12 +pki_external_pkcs12_password=Secret123 diff --git a/scripts/existing-step2.sh b/scripts/existing-step2.sh new file mode 100755 index 0000000..079d2c9 --- /dev/null +++ b/scripts/existing-step2.sh @@ -0,0 +1,8 @@ +#!/bin/sh -x + +mkdir -p build + +/bin/cp -f ca_signing.csr /tmp +/bin/cp -f ca.p12 /tmp + +pkispawn -v -f existing-step2.cfg -s CA 2>&1 | tee build/existing-step2.log -- cgit