Changes

Jump to: navigation, search

Sigul Signing Server Setup

24 bytes added, 12:53, 11 June 2015
no edit summary
Add bridge hostname to /etc/hosts:
[<IP address of the sigul bridge] > sigul-bridge-hostname
1) Create the NSS database on the server, to hold the certificate information *AS user '''sigul''' issue the following
Add hostnames to /etc/hosts:
[<IP address of the sigul bridge] > sigul-bridge-hostname [<IP address of the sigul server] > sigul-server-hostname
To begin setup, we have to follow a similar process to the bridge with NSS, except that we will import the CA cert generated on the bridge, not generate a new one locally.
#!/bin/bash
#Variables### And initial ##########Initial setup##############
mkdir ~/.sigul
client_dir=~/.sigul
user=$(whoami)
#########################################
echo
########Begin Certificate imports####################Begin Certificate imports
echo "======================="
echo "Setting up NSS Database"
echo "Downloading CA Cert"
echo "==================="
wget http://someurl.com/sigul/sigulca.p12 <-- ###Substitute with a path or url of your exported .p12
echo
echo "=================="
echo "======================"
#########End certificate imports########
########################################
#########NSS password Saver#############
read -p "Would you like to save your nss pass to ~/.sigul/client.conf [y/n]: " nsspasssel
########################################
#########User Input conditional#########
if [ $nsspasssel == "y" -o $nsspasssel == "Y" ]; then
rm sigulca.p12
fi
#########################################\
*If you plan to use FAS Authentication, run sigul_setup_client as the user you wish to setup.

Navigation menu