Installing Custom CA - dogtagpki/pki GitHub Wiki
This page describes the process to install CA in two steps:
- installation
- configuration
Prepare a deployment configuration file and enable the pki_skip_configration parameter, for example:
[CA] [email protected] pki_admin_name=caadmin pki_admin_nickname=caadmin pki_admin_password=Secret.123 pki_admin_uid=caadmin pki_client_database_password=Secret.123 pki_client_database_purge=False pki_client_pkcs12_password=Secret.123 pki_ds_base_dn=dc=ca,dc=example,dc=com pki_ds_database=ca pki_ds_password=Secret.123 pki_security_domain_name=EXAMPLE pki_token_password=Secret.123 pki_skip_configuration=True
Then execute:
$ pkispawn -f ca.cfg -s CA
Prepare a deployment configuration file and run pkispawn with the --skip-configuration option:
$ pkispawn -f ca.cfg -s CA --skip-configuration
Reuse the same deployment configuration file but set the pki_skip_installation parameter, for example:
[CA] [email protected] pki_admin_name=caadmin pki_admin_nickname=caadmin pki_admin_password=Secret.123 pki_admin_uid=caadmin pki_client_database_password=Secret.123 pki_client_database_purge=False pki_client_pkcs12_password=Secret.123 pki_ds_base_dn=dc=ca,dc=example,dc=com pki_ds_database=ca pki_ds_password=Secret.123 pki_security_domain_name=EXAMPLE pki_token_password=Secret.123 pki_skip_installation=True
Then execute:
$ pkispawn -f ca.cfg -s CA
Reuse the same deployment configuration file then run pkispawn with the --skip-installation option:
$ pkispawn -f ca.cfg -s CA --skip-installation