*/
object ApiListener "api" {
- cert_path = SysconfDir + "/icinga2/pki/" + NodeName + ".crt"
- key_path = SysconfDir + "/icinga2/pki/" + NodeName + ".key"
- ca_path = SysconfDir + "/icinga2/pki/ca.crt"
+ cert_path = LocalStateDir + "/lib/icinga2/pki/" + NodeName + ".crt"
+ key_path = LocalStateDir + "/lib/icinga2/pki/" + NodeName + ".key"
+ ca_path = LocalStateDir + "/lib/icinga2/pki/ca.crt"
ticket_salt = TicketSalt
}
<< " * The API listener is used for distributed monitoring setups.\n"
<< " */\n"
<< "object ApiListener \"api\" {\n"
- << " cert_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".crt\"\n"
- << " key_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".key\"\n"
- << " ca_path = SysconfDir + \"/icinga2/pki/ca.crt\"\n";
+ << " cert_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".crt\"\n"
+ << " key_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".key\"\n"
+ << " ca_path = LocalStateDir + \"/lib/icinga2/pki/ca.crt\"\n";
if (vm.count("listen")) {
std::vector<String> tokens;
<< " * The API listener is used for distributed monitoring setups.\n"
<< " */\n"
<< "object ApiListener \"api\" {\n"
- << " cert_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".crt\"\n"
- << " key_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".key\"\n"
- << " ca_path = SysconfDir + \"/icinga2/pki/ca.crt\"\n";
+ << " cert_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".crt\"\n"
+ << " key_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".key\"\n"
+ << " ca_path = LocalStateDir + \"/lib/icinga2/pki/ca.crt\"\n";
if (vm.count("listen")) {
std::vector<String> tokens;
* 5. Local CA
* 6. New self signed certificate
* 7. Request signed certificate from master
- * 8. copy key information to /etc/icinga2/pki
+ * 8. copy key information to /var/lib/icinga2/pki
* 9. enable ApiListener feature
* 10. generate zones.conf with endpoints and zone objects
* 11. set NodeName = cn in constants.conf
<< " * The API listener is used for distributed monitoring setups.\n"
<< " */\n"
<< "object ApiListener \"api\" {\n"
- << " cert_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".crt\"\n"
- << " key_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".key\"\n"
- << " ca_path = SysconfDir + \"/icinga2/pki/ca.crt\"\n"
+ << " cert_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".crt\"\n"
+ << " key_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".key\"\n"
+ << " ca_path = LocalStateDir + \"/lib/icinga2/pki/ca.crt\"\n"
<< "\n"
<< " accept_config = " << accept_config << "\n"
<< " accept_commands = " << accept_commands << "\n";
<< " * The API listener is used for distributed monitoring setups.\n"
<< " */\n"
<< "object ApiListener \"api\" {\n"
- << " cert_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".crt\"\n"
- << " key_path = SysconfDir + \"/icinga2/pki/\" + NodeName + \".key\"\n"
- << " ca_path = SysconfDir + \"/icinga2/pki/ca.crt\"\n";
+ << " cert_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".crt\"\n"
+ << " key_path = LocalStateDir + \"/lib/icinga2/pki/\" + NodeName + \".key\"\n"
+ << " ca_path = LocalStateDir + \"/lib/icinga2/pki/ca.crt\"\n";
if (!bind_host.IsEmpty())
fp << " bind_host = \"" << bind_host << "\"\n";
String PkiUtility::GetPkiPath(void)
{
- return Application::GetSysconfDir() + "/icinga2/pki";
+ return Application::GetLocalStateDir() + "/lib/icinga2/pki";
}
String PkiUtility::GetLocalCaPath(void)
projects / icinga2 / commitdiff