Merge pull request #6710 from Security-Onion-Solutions/fix/ub1804ssl

add mine function to signing_policies.conf

salt/ca/files/signing_policies.conf

@@ -1,3 +1,6 @@
+mine_functions:
+  x509.get_pem_entries: [/etc/pki/ca.crt]
+
 x509_signing_policies:
   filebeat:
     - minions: '*'

setup/so-functions

@@ -1438,14 +1438,6 @@ generate_ca() {
 
 		echo " Confirming existence of the CA certificate"
 		openssl x509 -in /etc/pki/ca.crt -noout -subject -issuer -dates
-
-		echo "Confirming salt mine now contains the certificate";
-		salt-call mine.get "$MINION_ID" x509.get_pem_entries | grep -E 'BEGIN CERTIFICATE|END CERTIFICATE';
-		if [ $? -eq 0 ]; then
-			echo "CA in mine"
-		else
-			echo "CA not in mine"
-		fi
 	} >> "$setup_log" 2>&1
 }