-
Notifications
You must be signed in to change notification settings - Fork 21
Configuration
Once the application is installed, there are two configuration files that need to be modified in order for certificate enrollment to function properly.
Both configuration files should be located in /etc/cepces or, if you installed manually, in /usr/local/etc/cepces. In the latter case, these files also have an extra suffix of .dist. In this case, remove the suffix by renaming the files, or make copies of them without the suffix (i.e. cepces.conf.dist should be named cepces.conf, and logging.conf.dist should be named logging.conf).
This is the main configuration file. It is fairly small and generally only requires two settings to be changed (endpoint and cas).
endpoint should be set to the CEP endpoint. The default should be sane enough, with the exception of the host name which has to be modified to suit your needs.
cas should point to a directory containing all CA certificates in your chain (if the version of the python-requests package is recent enough), or preferably a bundle file containing all CA certificates in the chain.
This configuration file is used by cepces to control the logging output which defaults to /var/log/cepces/cepces.conf.
The defaults should be sane enough, adjust the level to DEBUG if additional logging is required.
All required configuration should now be complete. Please consult the Usage page for information on how to proceed.
TODO: Additional comments are needed in logging.conf, or on this page to detail the settings and their possible values.