Show Table of Contents
3.3. Deploying the CA SSL Public Certificate to Clients
Both the RHN Proxy Server and RHN Satellite Server installation processes make client deployment relatively easy by generating a CA SSL public certificate and RPM. These installation processes make those publicly available by placing a copy of one or both into the
/var/www/html/pub/ directory of the RHN Server.
This public directory can be inspected easily by simply browsing to it via any web browser:
http://proxy-or-sat.example.com/pub/.
The CA SSL public certificate in that directory can be downloaded to a client system using
wget or curl. For example:
curl -Ohttp://proxy-or-sat.example.com/pub/RHN-ORG-TRUSTED-SSL-CERT
wgethttp://proxy-or-sat.example.com/pub/RHN-ORG-TRUSTED-SSL-CERT
Alternatively, if the CA SSL public certificate RPM resides in the
/pub directory, it can be installed on a client system directly:
rpm -Uvh\http://proxy-or-sat.example.com/pub/rhn-org-trusted-ssl-cert-VER-REL.noarch.rpm
Confirm the actual name of the certificate or RPM before running these commands.
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.