CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix certs on Rec and Heavy

Browse Source
This commit is contained in:
Josh Brower
2023-08-21 07:26:37 -04:00
parent 7e4036f2a5
commit e2fd371886
1 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
salt/ssl/init.sls
View File

@@ -198,7 +198,7 @@ etc_elasticfleet_logstash_key:
- new: True - new: True
{% if salt['file.file_exists']('/etc/pki/elasticfleet-logstash.key') -%} {% if salt['file.file_exists']('/etc/pki/elasticfleet-logstash.key') -%}
- prereq: - prereq:
- x509: etc_elasticfleet_crt - x509: etc_elasticfleet_logstash_crt
{%- endif %} {%- endif %}
- retry: - retry:
attempts: 5 attempts: 5
@@ -259,7 +259,7 @@ etc_elasticfleetlumberjack_key:
- new: True - new: True
{% if salt['file.file_exists']('/etc/pki/elasticfleet-lumberjack.key') -%} {% if salt['file.file_exists']('/etc/pki/elasticfleet-lumberjack.key') -%}
- prereq: - prereq:
- x509: etc_elasticfleet_crt - x509: etc_elasticfleetlumberjack_crt
{%- endif %} {%- endif %}
- retry: - retry:
attempts: 5 attempts: 5
@@ -283,7 +283,7 @@ etc_elasticfleetlumberjack_crt:
cmd.run: cmd.run:
- name: "/usr/bin/openssl pkcs8 -in /etc/pki/elasticfleet-lumberjack.key -topk8 -out /etc/pki/elasticfleet-lumberjack.p8 -nocrypt" - name: "/usr/bin/openssl pkcs8 -in /etc/pki/elasticfleet-lumberjack.key -topk8 -out /etc/pki/elasticfleet-lumberjack.p8 -nocrypt"
- onchanges: - onchanges:
- x509: etc_elasticfleet_key - x509: etc_elasticfleetlumberjack_key
eflogstashlumberjackperms: eflogstashlumberjackperms:
file.managed: file.managed:
@@ -327,7 +327,7 @@ etc_elasticfleet_agent_key:
- new: True - new: True
{% if salt['file.file_exists']('/etc/pki/elasticfleet-agent.key') -%} {% if salt['file.file_exists']('/etc/pki/elasticfleet-agent.key') -%}
- prereq: - prereq:
- x509: etc_elasticfleet_crt - x509: etc_elasticfleet_agent_crt
{%- endif %} {%- endif %}
- retry: - retry:
attempts: 5 attempts: 5
@@ -350,7 +350,7 @@ etc_elasticfleet_agent_crt:
cmd.run: cmd.run:
- name: "/usr/bin/openssl pkcs8 -in /etc/pki/elasticfleet-agent.key -topk8 -out /etc/pki/elasticfleet-agent.p8 -nocrypt" - name: "/usr/bin/openssl pkcs8 -in /etc/pki/elasticfleet-agent.key -topk8 -out /etc/pki/elasticfleet-agent.p8 -nocrypt"
- onchanges: - onchanges:
- x509: etc_elasticfleet_key - x509: etc_elasticfleet_agent_key
efagentperms: efagentperms:
file.managed: file.managed: