diff options
Diffstat (limited to 'misc/cert-client-init.sh')
-rw-r--r-- | misc/cert-client-init.sh | 42 |
1 files changed, 42 insertions, 0 deletions
diff --git a/misc/cert-client-init.sh b/misc/cert-client-init.sh new file mode 100644 index 0000000..53701f8 --- /dev/null +++ b/misc/cert-client-init.sh @@ -0,0 +1,42 @@ +#!/bin/bash +# +# This script is a placeholder for a local certificate authority (CA) +# to be a recognized certificate authority. +# +# This script must be run as root. +# +# Works on both CentOS and Ubuntu. +# +set -x +cat >/tmp/aafcacert.crt <<'!EOF' +-----BEGIN CERTIFICATE----- +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +******* PUT REAL CERTIFICATE HERE **************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +**************************************************************** +-----END CERTIFICATE----- +!EOF +chmod 444 /tmp/aafcacert.crt +if [ -f /etc/redhat-release ] +then + mv /tmp/aafcacert.crt /etc/pki/ca-trust/source/anchors/aafcacert.pem + update-ca-trust +else + mv /tmp/aafcacert.crt /usr/local/share/ca-certificates/aafcacert.crt + update-ca-certificates +fi |