xCAT/confluent
2
0
Fork 0
mirror of https://github.com/xcat2/confluent.git synced 2026-02-25 17:59:21 +00:00
Code Issues Projects Releases Wiki Activity
Files
master
confluent/misc/setupnokia.sh
Jarrod Johnson 69beaad3c9 Induce more versions of openssh to do the proper thing
2026-02-23 15:07:19 -05:00

44 lines
1.1 KiB
Bash
Raw Permalink Blame History

#!/bin/bash
if [[ -z "$SWITCHUSER" || -z "$SWITCHPASS" ]]; then
echo "Error: SWITCHUSER and SWITCHPASS environment variables must be set"
exit 1
fi
if [[ $# -eq 0 ]]; then
echo "Error: At least one argument is required"
exit 1
fi
SWITCHNAME="$1"
# Create temporary SSH ASKPASS script
ASKPASS_SCRIPT=$(mktemp)
trap "rm -f $ASKPASS_SCRIPT" EXIT
cat > "$ASKPASS_SCRIPT" << 'EOF'
#!/bin/bash
echo "$SWITCHPASS"
EOF
chmod 700 "$ASKPASS_SCRIPT"
# Set SSH_ASKPASS environment variable
export SSH_ASKPASS="$ASKPASS_SCRIPT"
export SSH_ASKPASS_REQUIRE=force
export DISPLAY=none
CERTDIR=$(mktemp -d)
trap "rm -rf $CERTDIR" EXIT
cd "$CERTDIR"
python3 /opt/confluent/lib/python/confluent/certutil.py -s "$SWITCHNAME"
setsid ssh $SWITCHUSER@"$SWITCHNAME" <<EOC
enter candidate exclusive
/ system json-rpc-server admin-state enable
/ system tls server-profile fullcert key "$(<$CERTDIR/key.pem)"
/ system tls server-profile fullcert certificate "$(<$CERTDIR/cert.pem)"
/ system json-rpc-server network-instance mgmt https admin-state enable
/ system json-rpc-server network-instance mgmt https tls-profile fullcert
commit save
EOC
Reference in New Issue View Git Blame Copy Permalink