diff options
author | Matthew Harmsen <mharmsen@redhat.com> | 2015-04-14 20:05:17 -0600 |
---|---|---|
committer | Matthew Harmsen <mharmsen@redhat.com> | 2015-04-14 20:05:17 -0600 |
commit | cde899c8e8516125b26818d5668487c99267420c (patch) | |
tree | f17f837e0e89aef299fa724df11be9a91528011b /base/server/sbin | |
parent | 711d3ca66b6702a33839c3a436550464fa49d0d8 (diff) | |
download | pki-cde899c8e8516125b26818d5668487c99267420c.tar.gz pki-cde899c8e8516125b26818d5668487c99267420c.tar.xz pki-cde899c8e8516125b26818d5668487c99267420c.zip |
Add HSM options to pkispawn
- PKI TRAC Ticket #1346 - pkispawn should have an HSM library option
Diffstat (limited to 'base/server/sbin')
-rwxr-xr-x | base/server/sbin/pkispawn | 27 |
1 files changed, 27 insertions, 0 deletions
diff --git a/base/server/sbin/pkispawn b/base/server/sbin/pkispawn index 55e87bba6..965918f22 100755 --- a/base/server/sbin/pkispawn +++ b/base/server/sbin/pkispawn @@ -197,6 +197,33 @@ def main(argv): parser.read_text('Export certificate to', config.pki_subsystem, 'pki_client_admin_cert') + + if parser.mdict['pki_hsm_enable'] == 'True': + use_hsm = 'Y' + else: + use_hsm = 'N' + + use_hsm = parser.read_text( + 'Using hardware security module (HSM) (Yes/No)', + default=use_hsm, options=['Yes', 'Y', 'No', 'N'], + sign='?', case_sensitive=False).lower() + + if use_hsm == 'y' or use_hsm == 'yes': + parser.set_property(config.pki_subsystem, + 'pki_hsm_enable', + 'True') + modulename = parser.read_text( + 'HSM Module Name (e. g. - nethsm)', allow_empty=False) + parser.set_property(config.pki_subsystem, + 'pki_hsm_modulename', + modulename) + libfile = parser.read_text( + 'HSM Lib File ' + + '(e. g. - /opt/nfast/toolkits/pkcs11/libcknfast.so)', + allow_empty=False) + parser.set_property(config.pki_subsystem, + 'pki_hsm_libfile', + libfile) print print "Directory Server:" |