Upload CA cert in the directory on install

This will later allow clients to securely download the CA cert by performaing mutual auth using LDAP with GSSAPI
author: Simo Sorce <simo@redhat.com> 2012-11-12 17:43:05 -0500
committer: Rob Crittenden <rcritten@redhat.com> 2013-01-23 14:26:41 -0500
commit: 18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f (patch)
tree: d254fad8444807639698c491e3382e38a8f75b78 /install/share
parent: 69c2f077dfdc3b91c3d892556711e0720502f868 (diff)
download: freeipa-18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f.tar.gz
freeipa-18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f.tar.xz
freeipa-18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f.zip
2 files changed, 9 insertions, 1 deletions
diff --git a/install/share/Makefile.am b/install/share/Makefile.am
index 4a5f81a67..f8f9b742d 100644
--- a/install/share/Makefile.am
+++ b/install/share/Makefile.am
@@ -60,7 +60,8 @@ app_DATA =				\
 	automember.ldif			\
 	replica-automember.ldif		\
 	replica-s4u2proxy.ldif		\
-	copy-schema-to-ca.py				\
+	copy-schema-to-ca.py		\
+	upload-cacert.ldif		\
 	$(NULL)
 
 EXTRA_DIST =				\
diff --git a/install/share/upload-cacert.ldif b/install/share/upload-cacert.ldif
new file mode 100644
index 000000000..d2087d8e2
--- /dev/null
+++ b/install/share/upload-cacert.ldif
@@ -0,0 +1,7 @@
+# add CA certificate to LDAP server
+dn: cn=CAcert,cn=ipa,cn=etc,$SUFFIX
+changetype: add
+objectClass: nsContainer
+objectClass: pkiCA
+cn: CAcert
+cACertificate;binary:: $CADERCERT
author	Simo Sorce <simo@redhat.com>	2012-11-12 17:43:05 -0500
committer	Rob Crittenden <rcritten@redhat.com>	2013-01-23 14:26:41 -0500
commit	18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f (patch)
tree	d254fad8444807639698c491e3382e38a8f75b78 /install/share
parent	69c2f077dfdc3b91c3d892556711e0720502f868 (diff)
download	freeipa-18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f.tar.gz freeipa-18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f.tar.xz freeipa-18eea90ebb24a9c22248f0b7e18646cc6e3e3e0f.zip