Commit aabdd780 authored by Tobias Assmann's avatar Tobias Assmann
Browse files

add ejbca key script to readme

parent b4ef9508
......@@ -18,7 +18,7 @@ Save the created `POSeIDAS.xml` and `application.properties` to `./poseidas/conf
In `./poseidas/config` is a pre configured template for testing purposes. It uses self-signed certificates as trust-anchors.
### Add terminal certificates
A emtpy database will be created at first startup. Further reading in [POSeIDAS Database](#POSeIDAS-Database)
A emtpy database will be created at first startup. It must be filled after deployment, see [POSeIDAS Database](#POSeIDAS-Database).
## Deployment to the hosting server
To deploy the project to a server some preparations are needed first.
......@@ -40,7 +40,14 @@ Edit the `deploy.sh` file accourding to your environment:
### Run the deploy script
Execute the `deploy.sh` script and check the startup of the services on the target host.
### EJBCA key setup script
## EJBCA key setup script
Run the following command on the server while sitting in the projects directory:
### POSeIDAS Database
```bash
docker exec reqesidta_ejbca /usr/local/bin/ejbca-config.sh && \
docker cp reqesidta_ejbca:/opt/primekey/bin/p12/sam.docker.reqesidta.de.p12 sam/ && \
docker-compose up -d --no-deps --build sam
```
## POSeIDAS Database
To setup the database, the docker container first must be shut down. The Database can be edited for example with [DBeaver](https://dbeaver.io/). Make sure to add the terminal certificate, private-key, sector-id and certificate-chain with the corresponding _REFID_ used in the config file (_CVCRefID_).
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment