aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorBogumil Zebek <bogumil.zebek@nokia.com>2021-07-01 09:32:59 +0000
committerGerrit Code Review <gerrit@onap.org>2021-07-01 09:32:59 +0000
commit50adca9f2641b285e59163588630f4b45f3f7fd4 (patch)
tree9a7dbee405c9ab514c93ab4694640111609c2854
parent628c5b9fd10b17830154a37ffcc0534fc17afa86 (diff)
parentaa6ac8c5b2cd25ca988bdcc7e0ee8716ff75d8cf (diff)
Merge "[OOM-CERT-SERVICE] Modify EJBCA configuration"
Diffstat
-rw-r--r--compose-resources/cmpServers.json4
-rwxr-xr-xcompose-resources/ejbca-configuration.sh10
-rw-r--r--docker-compose.yml1
3 files changed, 13 insertions, 2 deletions
diff --git a/compose-resources/cmpServers.json b/compose-resources/cmpServers.json
index 72564949..8972fd4d 100644
--- a/compose-resources/cmpServers.json
+++ b/compose-resources/cmpServers.json
@@ -3,7 +3,7 @@
{
"caName": "Client",
"url": "http://oomcert-ejbca:8080/ejbca/publicweb/cmp/cmp",
- "issuerDN": "CN=ManagementCA",
+ "issuerDN": "O=EJBCA Container Quickstart,CN=ManagementCA,UID=12345",
"caMode": "CLIENT",
"authentication": {
"iak": "mypassword",
@@ -13,7 +13,7 @@
{
"caName": "RA",
"url": "http://oomcert-ejbca:8080/ejbca/publicweb/cmp/cmpRA",
- "issuerDN": "CN=ManagementCA",
+ "issuerDN": "O=EJBCA Container Quickstart,CN=ManagementCA,UID=12345",
"caMode": "RA",
"authentication": {
"iak": "mypassword",
diff --git a/compose-resources/ejbca-configuration.sh b/compose-resources/ejbca-configuration.sh
index 8e6bd038..42e3f6bd 100755
--- a/compose-resources/ejbca-configuration.sh
+++ b/compose-resources/ejbca-configuration.sh
@@ -1,6 +1,16 @@
#!/bin/bash
configureEjbca() {
+ ejbca.sh ca init \
+ --caname ManagementCA \
+ --dn "O=EJBCA Container Quickstart,CN=ManagementCA,UID=12345" \
+ --tokenType soft \
+ --keyspec 3072 \
+ --keytype RSA \
+ -v 3652 \
+ --policy null \
+ -s SHA256WithRSA \
+ -type "x509"
ejbca.sh config cmp addalias --alias cmpRA
ejbca.sh config cmp updatealias --alias cmpRA --key operationmode --value ra
ejbca.sh ca editca --caname ManagementCA --field cmpRaAuthSecret --value mypassword
diff --git a/docker-compose.yml b/docker-compose.yml
index 3e55c29b..1b154f4d 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -10,6 +10,7 @@ services:
- "443:8443"
environment:
- INITIAL_ADMIN=;PublicAccessAuthenticationToken:TRANSPORT_ANY;
+ - NO_CREATE_CA=true
volumes:
- ./compose-resources/ejbca-configuration.sh:/opt/primekey/scripts/ejbca-configuration.sh
- ./compose-resources/certprofile_CUSTOM_ENDUSER-1834889499.xml:/opt/primekey/custom_profiles/certprofile_CUSTOM_ENDUSER-1834889499.xml