Joren/Wazuh_Stuff
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Patch to allow existing root ca

Browse Source
This commit is contained in:
joren
2025-02-20 10:36:31 +01:00
parent 89a1af1871
commit c2ced9dfc7
1 changed files with 14 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

18
wazuh-install.sh
View File

@@ -4013,10 +4013,20 @@ function cert_generateDashboardcertificates() {
} }
function cert_generateRootCAcertificate() { function cert_generateRootCAcertificate() {
common_logger "Checking for an existing root certificate."
common_logger "Generating the root certificate."
cert_executeAndValidate "openssl req -x509 -new -nodes -newkey rsa:2048 -keyout ${cert_tmp_path}/root-ca.key -out ${cert_tmp_path}/root-ca.pem -batch -subj '/OU=Wazuh/O=Wazuh/L=California/' -days 3650" # Define expected file names
existing_ca_key="root-ca.key"
existing_ca_cert="root-ca.pem"
if [[ -f "./$existing_ca_key" && -f "./$existing_ca_cert" ]]; then
common_logger "Existing root certificate found. Copying to target paths."
cp "./$existing_ca_key" "${cert_tmp_path}/root-ca.key"
cp "./$existing_ca_cert" "${cert_tmp_path}/root-ca.pem"
else
common_logger "No existing root certificate found. Generating a new one."
cert_executeAndValidate "openssl req -x509 -new -nodes -newkey rsa:2048 -keyout ${cert_tmp_path}/root-ca.key -out ${cert_tmp_path}/root-ca.pem -batch -subj '/OU=Wazuh/O=Wazuh/L=California/' -days 3650"
fi
} }
function cert_parseYaml() { function cert_parseYaml() {