diff options
| author |   Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> | 2020-11-19 14:13:45 +0100 |
|---|---|---|
| committer | Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com> | 2020-11-25 11:51:01 +0000 |
| commit | 3bbc1c7cb0400aea0235d130d36841e64ae53727 (patch) | |
| tree | 5869914631aa91cb10983b1cd43f31fc7c1310ec /plans/oom-platform-cert-service/certservice/resources/ejbca-configuration.sh | |
| parent | 330676fd2868c5adb52d1faccc913fbe52db6449 (diff) | |
Update CertService tests for changed ejbca profile
- Introduce ejbca profiles with new Sans types - email, ip, uri
- Update CertService tests for changed SANs delimiter
Issue-ID: OOM-2632
Signed-off-by: Piotr Marcinkiewicz <piotr.marcinkiewicz@nokia.com>
Change-Id: Ie6791d08f0b6143fbcec9572edb10004769ffe00
Diffstat (limited to 'plans/oom-platform-cert-service/certservice/resources/ejbca-configuration.sh')
| -rwxr-xr-x | plans/oom-platform-cert-service/certservice/resources/ejbca-configuration.sh | 24 |
1 files changed, 24 insertions, 0 deletions
diff --git a/plans/oom-platform-cert-service/certservice/resources/ejbca-configuration.sh b/plans/oom-platform-cert-service/certservice/resources/ejbca-configuration.sh new file mode 100755 index 00000000..3eb146db --- /dev/null +++ b/plans/oom-platform-cert-service/certservice/resources/ejbca-configuration.sh @@ -0,0 +1,24 @@ +#!/bin/bash + +configureEjbca() { + ejbca.sh config cmp addalias --alias cmpRA + ejbca.sh config cmp updatealias --alias cmpRA --key operationmode --value ra + ejbca.sh ca editca --caname ManagementCA --field cmpRaAuthSecret --value mypassword + ejbca.sh config cmp updatealias --alias cmpRA --key responseprotection --value pbe + ejbca.sh ca importprofiles -d /opt/primekey/custom_profiles + #Profile name taken from certprofile filename (certprofile_<profile-name>-<id>.xml) + ejbca.sh config cmp updatealias --alias cmpRA --key ra.certificateprofile --value CUSTOM_ENDUSER + #ID taken from entityprofile filename (entityprofile_<profile-name>-<id>.xml) + ejbca.sh config cmp updatealias --alias cmpRA --key ra.endentityprofileid --value 1356531849 + ejbca.sh config cmp dumpalias --alias cmpRA + ejbca.sh config cmp addalias --alias cmp + ejbca.sh config cmp updatealias --alias cmp --key allowautomatickeyupdate --value true + ejbca.sh config cmp updatealias --alias cmp --key responseprotection --value pbe + ejbca.sh ra addendentity --username Node123 --dn "CN=Node123" --caname ManagementCA --password mypassword --type 1 --token USERGENERATED + ejbca.sh ra setclearpwd --username Node123 --password mypassword + ejbca.sh config cmp updatealias --alias cmp --key extractusernamecomponent --value CN + ejbca.sh config cmp dumpalias --alias cmp + ejbca.sh ca getcacert --caname ManagementCA -f /dev/stdout > cacert.pem +} + +configureEjbca |