summaryrefslogtreecommitdiffstats
path: root/dogtag-9.0/ca-include.sh
blob: 0020729a452a7ad0c1944b9f56699c2efedd2eec (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45

#!/bin/sh -x

SRC_DIR="`cd ../.. ; pwd`"

DOMAIN="example.com"
REALM="EXAMPLE"
PASSWORD="Secret123"

INSTANCE_ROOT="/var/lib"
INSTANCE_USER="pkiuser"
INSTANCE_GROUP="pkiuser"

CA_INSTANCE_NAME="pki-ca"

NSSDB_DIR="$INSTANCE_ROOT/$CA_INSTANCE_NAME/alias"

CA_SUBSYSTEM_TYPE="ca"
CA_SUBSYSTEM_NAME="Certificate Authority"

CA_SECURE_PORT="9443"
CA_AGENT_SECURE_PORT="9443"
CA_EE_SECURE_PORT="9444"
CA_ADMIN_SECURE_PORT="9445"
CA_EE_SECURE_CLIENT_AUTH_PORT="9446"
CA_UNSECURE_PORT="9180"
CA_TOMCAT_SERVER_PORT="9701"

CA_LDAP_HOST="$HOSTNAME"
CA_LDAP_PORT="389"
CA_LDAP_DATABASE="ca"
CA_LDAP_BASE_DN="dc=ca,dc=pki,dc=example,dc=com"
CA_LDAP_BIND_DN="cn=Directory Manager"
CA_LDAP_PASSWORD="$PASSWORD"

CA_SIGN_CERT_SUBJECT_NAME="CN=$CA_SUBSYSTEM_NAME,O=$REALM"
CA_OCSP_CERT_SUBJECT_NAME="CN=OCSP Signing Certificate,O=$REALM"
CA_SERVER_CERT_SUBJECT_NAME="CN=$HOSTNAME,O=$REALM"
CA_SUBSYSTEM_CERT_SUBJECT_NAME="CN=CA Subsystem Certificate,O=$REALM"
CA_AUDIT_SIGNING_CERT_SUBJECT_NAME="CN=CA Audit Signing Certificate,O=$REALM"

CA_ADMIN_USER="caadmin"
CA_ADMIN_NAME="$CA_ADMIN_USER"
CA_ADMIN_EMAIL="$CA_ADMIN_USER@$DOMAIN"
CA_ADMIN_PASSWORD="$PASSWORD"
CA_ADMIN_CERT_SUBJECT="CN=$CA_ADMIN_NAME,UID=$CA_ADMIN_USER,E=$CA_ADMIN_EMAIL,O=$REALM"
generated by cgit (git 2.34.1) at 2024-04-23 17:42:06 +0000