Document how to generate 2FA keys/certs
Signed-off-by: Pierre-Yves Chibon <pingou@pingoured.fr>
This commit is contained in:
Pierre-Yves Chibon
parent
08e68f35b1
commit
8db145eba7
1 changed files with 25 additions and 0 deletions
25
generate_2fa_keys.md
Normal file
25
generate_2fa_keys.md
Normal file
|
|
@ -0,0 +1,25 @@
|
||||||
|
# How to generate 2 Factor Authentication key and certificate
|
||||||
|
|
||||||
|
Doing this requires membership in sysadmin-main FAS group.
|
||||||
|
|
||||||
|
All the following commands should be ran on one of batcave hosts.
|
||||||
|
|
||||||
|
Clone `ansible-private` repo:
|
||||||
|
|
||||||
|
git clone /srv/git/ansible-private
|
||||||
|
|
||||||
|
Change into `files/vpn` subdirectory in cloned repo:
|
||||||
|
|
||||||
|
cd ansible-private/files/2fa-certs
|
||||||
|
|
||||||
|
The process is described in the README but is basically:
|
||||||
|
|
||||||
|
. ./vars; ./build-and-sign-key <hostname>
|
||||||
|
|
||||||
|
Add generated files to git index, commit, push:
|
||||||
|
|
||||||
|
git status
|
||||||
|
git add .
|
||||||
|
git commit -a -m "Add 2 FA key/cert for <hostname>"
|
||||||
|
git show
|
||||||
|
git push
|
||||||
Loading…
Add table
Add a link
Reference in a new issue