17 lines
790 B
Bash
17 lines
790 B
Bash
#!/bin/bash
|
|
|
|
RUN_CMD="/usr/sbin/certmonger -L -P /var/run/certmonger.sock"
|
|
|
|
if [ -f /var/lib/certmonger/lock ]; then
|
|
echo Certmonger already configured
|
|
eval "$RUN_CMD -n -c 'getcert list -i Task'"
|
|
else
|
|
echo Creating certificate for $CERT_NAME from $SCEP_URL
|
|
mkdir /var/lib/certmonger/local
|
|
chmod 700 /var/lib/certmonger/local
|
|
eval "$RUN_CMD -n -c 'getcert add-scep-ca -c MyCA -u $SCEP_URL'"
|
|
eval "$RUN_CMD -n -c 'getcert request -I Task -c MyCA -f \"$CONTAINER_CERT_FILE\" -k \"$CONTAINER_KEY_FILE\" -g $CERT_KEY_BITS -N $CERT_NAME $CERT_KEY_USAGE $CERT_ALT_NAMES -C \"/createCertChain.sh $CONTAINER_CERT_FILE $SCEP_URL $CONTAINER_CA_FILE $CONTAINER_FULLCHAIN_FILE \"'"
|
|
fi
|
|
|
|
exec /usr/sbin/certmonger -L -P /var/run/certmonger.sock -n
|