4.3. Deploying the CA SSL Public Certificate to Clients

The Red Hat Satellite Proxy Server and Red Hat Satellite Server installation processes generate a CA SSL public certificate and package it in an RPM file. These installation processes make the certificate and RPM file publicly available by placing a copy of one or both into the /var/www/html/pub/ directory of the Satellite or Proxy Server.
You can use your web browser to inspect the contents of this directory: http://proxy-or-sat.example.com/pub/. You can use the wget or curl commands to download the CA SSL public certificate to a client system.


Confirm the name of the certificate or RPM file before running any of these commands.
# curl -O http://proxy-or-sat.example.com/pub/RHN-ORG-TRUSTED-SSL-CERT
# wget http://proxy-or-sat.example.com/pub/RHN-ORG-TRUSTED-SSL-CERT
Alternatively, if the CA SSL public certificate RPM file exists in the /pub directory, you can use the rpm command to install the package. For example:
# rpm -Uvh http://proxy-or-sat.example.com/pub/rhn-org-trusted-ssl-cert-VER-REL.noarch.rpm