CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Setup Script - Delete key then accept it

Browse Source
This commit is contained in:
Mike Reeves
2018-11-12 10:09:09 -05:00
parent eeddb27e4c
commit f53a545038
1 changed files with 5 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

23
so-setup-network.sh
View File

@@ -35,29 +35,10 @@ accept_salt_key_local() {
accept_salt_key_remote() {
# See if the key is already there. If so nuke it.
GETKEYSACCEPTED=$(ssh -v -i /root/.ssh/so.key socore@$MSRV sudo salt-key -l accepted)
GETKEYSREJECTED=$(ssh -v -i /root/.ssh/so.key socore@$MSRV sudo salt-key -l rejected)
echo "Seeing if the key exists"
echo $GETKEYSACCEPTED
echo $GETKEYSREJECTED
if grep -q $HOSTNAME $GETKEYSACCEPTED; then
SKACPT=1
else
SKACPT=0
fi
if grep -q $HOSTNAME $GETKEYSREJECTED; then
SKRJCT=1
else
SKRJCT=0
fi
if [ $SKACPT=1 ] || [ $SKRJCT=1 ]; then
# Delete the key just in case.
ssh -v -i /root/.ssh/so.key socore@$MSRV sudo salt-key -d $HOSTNAME -y
else
# Accept the key remotely so the device can check in
salt-call state.apply ca
ssh -v -i /root/.ssh/so.key socore@$MSRV sudo salt-key -a $HOSTNAME -y
fi
}