Certificate Authority - Henryisgreat/TechJournal GitHub Wiki
# CERTIFICATE AUTHORITY
-
Move CA-henry to the MGMT network
-
make user henry and give creds
-
useradd henry -
usermod -aG wheel henry
-
-
Allow ssh via firewall
-
[install easy-rsa](How To Set Up and Configure a Certificate Authority (CA) On CentOS 8 | DigitalOcean)
-
sudo dnf install epel-release -
sudo yum install easy-rsa -y
-
##
CA sys info
-
IP: 172.16.200.12/28
-
name: ca-henry
-
user: henry
-
pass: ****
-
Gateway: 172.16.200.2
-
DNS: 172.16.200.11
## ISSUES
MGMT could not ping outside of enterprise
#### solution
NAT rules were removed from edge01 during restart, needed to add nat source rules for LAN and MGMT