update-ca-trust missing for Mageia
Posted:
Sep 10th, '19, 09:38
by hman
Hi all,
i writing a script to update an intermediate certificate into /etc/pki/tls/certs/ca-bundle.crt each week. In CentOS i used /etc/pki/ca-trust/source/anchors approach with update-ca-trust extract, but i can't find update-ca-trust in Mageia.
I would not edit ca-bundle.crt to remove old certificate and add new. Is there another procedure for Mageia ?
Re: update-ca-trust missing for Mageia
Posted:
Sep 10th, '19, 15:14
by doktor5000
hman wrote:i writing a script to update an intermediate certificate into /etc/pki/tls/certs/ca-bundle.crt each week.
Maybe you could add some context information on why you need to update an intermediate CA certificate each week ?
Re: update-ca-trust missing for Mageia
Posted:
Sep 10th, '19, 19:49
by hman
Hi doktor5000,
thanks for replay, my corporate use a proxy that implement a Zscaler Intermediate CA that expire each 2 weeks and generate a new x509 each 7/10 days, so on CentOS 7 i update anchors folder with new certificate each 7/10 days and launch update.
Re: update-ca-trust missing for Mageia
Posted:
Sep 11th, '19, 03:40
by doktor5000
hman wrote:that expire each 2 weeks and generate a new x509 each 7/10 days, so on CentOS 7 i update anchors folder with new certificate each 7/10 days and launch update.
I still don't understand why the certificate has to expire every 2 weeks ...
Re: update-ca-trust missing for Mageia
Posted:
Sep 11th, '19, 09:12
by hman
Hi doktor5000,
I still don't understand why the certificate has to expire every 2 weeks ...
also i don't understand, but this is corporate standard, so i could only try to live with it