I suggest you search the archive of this list for 'cookbook'. This documents the step by step RA and CA install for a single machine.
Mike > > I plan to use openca for testing and learning and can initially only > use one physical node. To ease possible later division to an online and > an offline node I will try to use two management interfaces. I am > therefore trying to follow the instructions given in openca_guide.pdf, > chapter 4.2 "How to setup two management interfaces on one server?". > Here are some questions and suggestions: > > Q1: Should I configure one online "site" and one offline "site" in > apache as well, each with different htdocs and cgi-bin paths (also > reflected when running configure)? > > In 4.2.1 "Online Components" it says "edit .... and > OPENCADIR/etc/configure_etc.sh. > > Q2: In what way needs configure_etc.sh to be edited for the online > node? Remove any ca-related directories? > > In 4.2.1 it also says "use the hierarchy level ra". > > Q3: I understand that this refers to uncomment the "the node acts as > RA only" part of the "dataexchange configuration" section of config.xml > and commenting the default part. For my part I used the "the node acts > as public/scep and RA" part instead as I want all of these services to > be managed through the same interface. Is this OK? > > In 4.2.2 "Offline Components" it says "chmod 000 etc/servers/*.conf*". > > S1: If done this way you later has to add at least read access later. > I suggest doing chmod a+r etc/servers/*.conf* from the start instead. > > In 4.2.2 it also says "The next step is really important you have to > edit the file etc/configure_etc.sh." ... "Usually there should be the > following directories: > /Test/OpenCA/etc/ > /Test/OpenCA/lib/servers/offline_node > /Test/OpenCA/lib/servers/ca > /Test/htdocs/ca > /Test/htdocs/offline_node" > > Q4: Does "/Test" above actually refer to OPENCADIR like in 4.2.1 or > does it mean I have to use a different install prefix for the offline > part? > > Q5: Assuming "/Test" is OPENCADIR, then I can not find any > OPENCADIR/lib/servers. Do you actually mean OPENCADIR/etc/servers? > > Best regards > > Tomas > ________________________________________________________________________ > Check Out the new free AIM(R) Mail -- 2 GB of storage and > industry-leading spam and email virus protection. > > > ------------------------------------------------------------------------- > Take Surveys. Earn Cash. Influence the Future of IT > Join SourceForge.net's Techsay panel and you'll get the chance to share your > opinions on IT & business topics through brief surveys - and earn cash > http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV > _______________________________________________ > Openca-Users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/openca-users > ------------------------------------------------------------------------- Take Surveys. Earn Cash. Influence the Future of IT Join SourceForge.net's Techsay panel and you'll get the chance to share your opinions on IT & business topics through brief surveys - and earn cash http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV _______________________________________________ Openca-Users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/openca-users
