diff options
Diffstat (limited to 'myrpki/README')
| -rw-r--r-- | myrpki/README | 41 |
1 files changed, 34 insertions, 7 deletions
diff --git a/myrpki/README b/myrpki/README index 2d015a02..0f7a3040 100644 --- a/myrpki/README +++ b/myrpki/README @@ -248,7 +248,29 @@ The [current] steps are: instructions there to build the RFC-3779-aware OpenSSL code and associated Python extension module. -5) Run myirbe.py -b to set up the initial BPKI structure needed to run +5) Next, you need to set up the MySQL databases that rpkid et al will + use. The MySQL database, username, and password values all need to + match the ones you specified in myrpki.conf. This is one of the + tasks a setup script should handle, but until that is written, + you'll have to do this by hand in the mysql command line tool: + + $ mysql -u root -p + mysql> CREATE DATABASE irdb_database; + mysql> CREATE DATABASE rpki_database; + mysql> GRANT all ON irdb_database.* TO irdb_user@localhost IDENTIFIED BY 'irdb_password'; + mysql> GRANT all ON rpki_database.* TO rpki_user@localhost IDENTIFIED BY 'rpki_password'; + mysql> COMMIT; + mysql> quit + + If you are running pubd, you will also have to do: + + $ mysql -u root -p + mysql> CREATE DATABASE pubd_database; + mysql> GRANT all ON pubd_database.* TO pubd_user@localhost IDENTIFIED BY 'pubd_password'; + mysql> COMMIT; + mysql> quit + +6) Run myirbe.py -b to set up the initial BPKI structure needed to run your daemons: $ python $top/myrpki/myirbe.py -b @@ -259,22 +281,27 @@ The [current] steps are: that it has updated the BPKI and that you need to (re)start daemons now. -[missing step -- sql setup] +7) If you are running your own publication repository (that is, if you + are running pubd), you will also need to set up an rsyncd server or + configure your existing one to serve pubd's output. There's a + sample config file in $top/myrpki/examples/rsyncd.conf, but you may + need to do something more complicated if you are already running + rsyncd for other purposes. See the rsync(1) and rsyncd.conf(5) + manual pages for more details. -[missing step -- rsyncd setup -- include sample config in myrpki/examples?] - -6) Start the daemons. You can use $top/myrpki/start-servers.sh to do +8) Start the daemons. You can use $top/myrpki/start-servers.sh to do this, or write your own script. If you intend to run pubd, you should make sure that the directory you specified as publication-base in the [pubd] section exists and - is writable by the userid that will be running pubd. + is writable by the userid that will be running pubd, and should + also make sure to start rsyncd. [start-servers.sh should be replaced by a python script that understands myprki.conf so that it can figure out whether to run pubd and rootd from the config file.] -7) Run myirbe.py again, twice, this time with no arguments. +9) Run myirbe.py again, twice, this time with no arguments. $ python $top/myrpki/myirbe.py $ python $top/myrpki/myirbe.py |