From 18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f Mon Sep 17 00:00:00 2001 From: Simo Sorce Date: Mon, 12 Nov 2012 17:43:05 -0500 Subject: Upload CA cert in the directory on install This will later allow clients to securely download the CA cert by performaing mutual auth using LDAP with GSSAPI --- install/share/Makefile.am | 3 ++- install/share/upload-cacert.ldif | 7 +++++++ 2 files changed, 9 insertions(+), 1 deletion(-) create mode 100644 install/share/upload-cacert.ldif (limited to 'install') diff --git a/install/share/Makefile.am b/install/share/Makefile.am index 4a5f81a6..f8f9b742 100644 --- a/install/share/Makefile.am +++ b/install/share/Makefile.am @@ -60,7 +60,8 @@ app_DATA = \ automember.ldif \ replica-automember.ldif \ replica-s4u2proxy.ldif \ - copy-schema-to-ca.py \ + copy-schema-to-ca.py \ + upload-cacert.ldif \ $(NULL) EXTRA_DIST = \ diff --git a/install/share/upload-cacert.ldif b/install/share/upload-cacert.ldif new file mode 100644 index 00000000..d2087d8e --- /dev/null +++ b/install/share/upload-cacert.ldif @@ -0,0 +1,7 @@ +# add CA certificate to LDAP server +dn: cn=CAcert,cn=ipa,cn=etc,$SUFFIX +changetype: add +objectClass: nsContainer +objectClass: pkiCA +cn: CAcert +cACertificate;binary:: $CADERCERT -- cgit