brozek/website
1
0
Fork 0
mirror of https://github.com/Brandon-Rozek/website.git synced 2024-11-09 10:40:34 -05:00
Code Issues Projects Releases Packages Wiki Activity

Added Fedora instructions

Browse source
This commit is contained in:
Brandon Rozek 2022-12-17 18:29:24 -05:00
parent b1deda2ade
commit 108fc5cc2f
1 changed files with 33 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

34
content/blog/internalca.md
View file

@ -95,5 +95,37 @@ To have more full grained control over the certificate usages and expiry time, I
## Trusting the CA
To trust the CA on Linux, you need to copy the `ca.pem` file over to `/usr/local/share/ca-certificates/` and then execute `sudo update-ca-certificates`. Firefox has its own certificate store that you can add `ca.pem` to by accessing Preferences->Privacy & Security->Security->Certificates->View Certificates->Authorities->Import. The exact trail might have changed by the time you read this.
On Linux, I know of two different ways to trust the CA depending on your distrubtion.
### Ubuntu Derivative
First you need to copy the `ca.pem` file over to `/usr/local/share/ca-certificates/`.
```bash
sudo mv ca.pem /usr/local/share/ca-certificates
```
Then you need to execute
```bash
sudo update-ca-certificates
```
### Fedora Derivative
Copy `ca.pem` over to `/etc/pki/ca-trust/source/anchors`.
```bash
sudo mv ca.pem /usr/pki/ca-trust/source/anchors
```
Then execute
```bash
sudo update-ca-trust
```
### Special Instructions for Firefox
Firefox has its own certificate store that you can add `ca.pem` to by accessing Preferences->Privacy & Security->Security->Certificates->View Certificates->Authorities->Import. The exact trail might have changed by the time you read this.