38 lines
965 B
Bash
Executable File
38 lines
965 B
Bash
Executable File
#!/bin/bash
|
|
|
|
# If parent cn is not specified, default it to the parent host.
|
|
# If the zone if not specified, default it to the cn of the satellite/agent.
|
|
# Use the default port if none is specified.
|
|
|
|
if [ -z "$PARENTCN" ]; then
|
|
PARENTCN="$PARENTHOST"
|
|
fi
|
|
|
|
if [ -z "$ZONE" ]; then
|
|
ZONE="$CN"
|
|
fi
|
|
|
|
if [ -z "$PARENTPORT" ]; then
|
|
PARENTPORT=5665
|
|
fi
|
|
|
|
|
|
icinga2 pki new-cert --cn "$CN" \
|
|
--key /var/lib/icinga2/certs/"${CN}".key \
|
|
--cert /var/lib/icinga2/certs/"${CN}".crt
|
|
|
|
icinga2 pki save-cert --key /var/lib/icinga2/certs/"${CN}".key \
|
|
--cert /var/lib/icinga2/certs/"${CN}".crt \
|
|
--trustedcert /var/lib/icinga2/certs/"${PARENTCN}".crt \
|
|
--host "${PARENTHOST}"
|
|
|
|
icinga2 node setup --ticket "$TICKET" \
|
|
--cn "$CN" \
|
|
--endpoint "${PARENTCN}","${PARENTHOST}","${PARENTPORT}" \
|
|
--zone "$ZONE" \
|
|
--parent_zone "$PARENTZONE" \
|
|
--parent_host "$PARENTHOST" \
|
|
--trustedcert /var/lib/icinga2/certs/"${PARENTCN}".crt \
|
|
--accept-commands --accept-config \
|
|
--disable-confd
|