X-Git-Url: https://gerrit.onap.org/r/gitweb?a=blobdiff_plain;f=docs%2Fcert_installation.rst;h=bb03f0ac0f93284b2b7477fdc2b534a447306d2e;hb=HEAD;hp=221d5fea49358ebf42932c673a06396a8464c2c0;hpb=30aa3ac5fba597c06ca7ab6b3934649de67f414e;p=sdnc%2Foam.git diff --git a/docs/cert_installation.rst b/docs/cert_installation.rst index 221d5fea..424ac600 100644 --- a/docs/cert_installation.rst +++ b/docs/cert_installation.rst @@ -95,12 +95,13 @@ Once you have this downloaded you need to go the following location. */oam/installation/src/main/yaml* -Once you are there you need to edit the docker-compose.yaml file to include your directory where you have the zip file and certs.properties located. +Once you are there you need to edit the docker-compose.yaml file to map the zip file and certs.properties file into the container. You need to add in the following lines into the yaml file just below *container_name: sdnc_controller_container* in the file:: volumes: - - :/opt/opendaylight/current/certs + - /certs.properties:/opt/opendaylight/certs/certs.properties + - /keys0.zip:/opt/opendaylight/certs/keys0.zip Once you have the mount path for your files added into the yaml file you can run the following command:: @@ -135,7 +136,7 @@ EXAMPLE: Mounting pnf-simulator If you want to mount a pnf-simulator onto the SDNC container the you must have the pnf-simulator container up and running and the SDNC container running with the keys and certificates in the ODL keystore. To mount your pnf-simulator you must send the following RPC: - *PUT /restconf/config/network-topology:network-topology/topology/topology-netconf/node/pnf-simulator* + *PUT /rests/data/network-topology:network-topology/topology/topology-netconf/node/pnf-simulator?content=config* You must also send this as the body of the request:: @@ -172,6 +173,8 @@ Confirmation of this functionality can be performed in OOM using the Contrib pro Firstly, CertService will need to be deployed. This will require the global flag *global.cmpv2Enabled* to be set to true in *kubernetes/onap/resources/overrides/aaf-cert-service-environment.yaml* +There is also an additional module that will need to be deployed named platform. This is required for secret creation. + To deploy the EJBCA server the global flag *global.addTestingComponents* in *kubernetes/onap/values.yaml* will need to be set to true. This flag will load the test configuration from *kubernetes/aaf/charts/aaf-cert-service/resources/test/cmpServers.json* @@ -285,7 +288,7 @@ This is used to add the list of CA’s and server certificates from the xnf as t Checking Correct Certs Installation ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ If you would like to run a check to make sure that your keys and certificates were installed correctly in ODL you can run the following command in Postman REST client: - *GET http://localhost:8282/restconf/config/netconf-keystore:keystore* + *GET http://localhost:8282/rests/data/netconf-keystore:keystore?content=config* The authorization that is needed to gain access to ODL’s restconf interface is the default SDNC username and password.