From 75e4b2da632caeac44d247664dce7a3c963f96bc Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?s=C3=A9bastien?= Date: Tue, 10 Dec 2024 17:24:50 +0100 Subject: [PATCH] =?UTF-8?q?=09modifi=C3=A9=C2=A0:=20=20=20=20=20=20=20=20?= =?UTF-8?q?=20zimbra/certificat/renew=5Fcert=5Facmesh=5Fzimbra.sh?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- zimbra/certificat/renew_cert_acmesh_zimbra.sh | 72 +++++++++++++------ 1 file changed, 51 insertions(+), 21 deletions(-) diff --git a/zimbra/certificat/renew_cert_acmesh_zimbra.sh b/zimbra/certificat/renew_cert_acmesh_zimbra.sh index 6dbf6ab..49a5008 100644 --- a/zimbra/certificat/renew_cert_acmesh_zimbra.sh +++ b/zimbra/certificat/renew_cert_acmesh_zimbra.sh @@ -1,29 +1,59 @@ #!/bin/bash -RCODE=$? + #Saisir le FQDN -FQDN_1=zimbrapro.altinea.fr -#FQDN_2=smtp.it-nea.eu +FQDN_1=smtps.transarc.fr +FQDN_2=zimbran.transarc.fr +/root/.acme.sh/acme.sh --issue --standalone --keylength 4096 -d ${FQDN_1} -d ${FQDN_2} + +cd /etc/myacme/${FQDN_1} +echo '-----BEGIN CERTIFICATE----- +MIIFazCCA1OgAwIBAgIRAIIQz7DSQONZRGPgu2OCiwAwDQYJKoZIhvcNAQELBQAw +TzELMAkGA1UEBhMCVVMxKTAnBgNVBAoTIEludGVybmV0IFNlY3VyaXR5IFJlc2Vh +cmNoIEdyb3VwMRUwEwYDVQQDEwxJU1JHIFJvb3QgWDEwHhcNMTUwNjA0MTEwNDM4 +WhcNMzUwNjA0MTEwNDM4WjBPMQswCQYDVQQGEwJVUzEpMCcGA1UEChMgSW50ZXJu +ZXQgU2VjdXJpdHkgUmVzZWFyY2ggR3JvdXAxFTATBgNVBAMTDElTUkcgUm9vdCBY +MTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAK3oJHP0FDfzm54rVygc +h77ct984kIxuPOZXoHj3dcKi/vVqbvYATyjb3miGbESTtrFj/RQSa78f0uoxmyF+ +0TM8ukj13Xnfs7j/EvEhmkvBioZxaUpmZmyPfjxwv60pIgbz5MDmgK7iS4+3mX6U +A5/TR5d8mUgjU+g4rk8Kb4Mu0UlXjIB0ttov0DiNewNwIRt18jA8+o+u3dpjq+sW +T8KOEUt+zwvo/7V3LvSye0rgTBIlDHCNAymg4VMk7BPZ7hm/ELNKjD+Jo2FR3qyH +B5T0Y3HsLuJvW5iB4YlcNHlsdu87kGJ55tukmi8mxdAQ4Q7e2RCOFvu396j3x+UC +B5iPNgiV5+I3lg02dZ77DnKxHZu8A/lJBdiB3QW0KtZB6awBdpUKD9jf1b0SHzUv +KBds0pjBqAlkd25HN7rOrFleaJ1/ctaJxQZBKT5ZPt0m9STJEadao0xAH0ahmbWn +OlFuhjuefXKnEgV4We0+UXgVCwOPjdAvBbI+e0ocS3MFEvzG6uBQE3xDk3SzynTn +jh8BCNAw1FtxNrQHusEwMFxIt4I7mKZ9YIqioymCzLq9gwQbooMDQaHWBfEbwrbw +qHyGO0aoSCqI3Haadr8faqU9GY/rOPNk3sgrDQoo//fb4hVC1CLQJ13hef4Y53CI +rU7m2Ys6xt0nUW7/vGT1M0NPAgMBAAGjQjBAMA4GA1UdDwEB/wQEAwIBBjAPBgNV +HRMBAf8EBTADAQH/MB0GA1UdDgQWBBR5tFnme7bl5AFzgAiIyBpY9umbbjANBgkq +hkiG9w0BAQsFAAOCAgEAVR9YqbyyqFDQDLHYGmkgJykIrGF1XIpu+ILlaS/V9lZL +ubhzEFnTIZd+50xx+7LSYK05qAvqFyFWhfFQDlnrzuBZ6brJFe+GnY+EgPbk6ZGQ +3BebYhtF8GaV0nxvwuo77x/Py9auJ/GpsMiu/X1+mvoiBOv/2X/qkSsisRcOj/KK +NFtY2PwByVS5uCbMiogziUwthDyC3+6WVwW6LLv3xLfHTjuCvjHIInNzktHCgKQ5 +ORAzI4JMPJ+GslWYHb4phowim57iaztXOoJwTdwJx4nLCgdNbOhdjsnvzqvHu7Ur +TkXWStAmzOVyyghqpZXjFaH3pO3JLF+l+/+sKAIuvtd7u+Nxe5AW0wdeRlN8NwdC +jNPElpzVmbUq4JUagEiuTDkHzsxHpFKVK7q4+63SM1N95R1NbdWhscdCb+ZAJzVc +oyi3B43njTOQ5yOf+1CceWxG1bQVs5ZufpsMljq4Ui0/1lvh+wjChP4kqKOJ2qxq +4RgqsahDYVvTH9w7jXbyLeiNdd8XM2w9U/t7y0Ff/9yi0GE44Za4rF2LN9d11TPA +mRGunUHBcnWEvgJBQl9nJEiU0Zsnvgc/ubhPgXRR4Xq37Z0j4r7g1SgEEzwxA57d +emyPxgcYxn/eR44/KJ4EBs+lVDR3veyJm+kXQ99b21/+jh5Xos1AnX5iItreGCc= +-----END CERTIFICATE-----' >> fullchain.cer + +cp fullchain.cer ${FQDN_1}.key ${FQDN_1}.cer /tmp +chown zimbra:zimbra /tmp/fullchain.cer +chown zimbra:zimbra /tmp/${FQDN_1}.* + -/root/.acme.sh/acme.sh --issue --standalone --keylength 4096 -d ${FQDN_1} -#/root/.acme.sh/acme.sh --issue --standalone --keylength 4096 -d ${FQDN_1} -d ${FQDN_2} -if [ $RCODE -eq 0 ]; then - su - zimbra -c "/opt/zimbra/bin/zmcertmgr verifycrt comm /opt/zimbra/ssl/zimbra/commercial/commercial.key /etc/myacme/${FQDN_1}/${FQDN_1}.cer" - VERIF_RCODE=$(su - zimbra -c"echo $?") - if [ $VERIF_RCODE -eq 1 ]; then +su - zimbra -c "/opt/zimbra/bin/zmcertmgr verifycrt comm /tmp/${FQDN_1}.key /tmp/${FQDN_1}.cer /tmp/fullchain.cer" +VERIF_RCODE=$(su - zimbra -c"echo $?") +if [ $VERIF_RCODE -eq 1 ]; then echo "erreur dans la vérification du certificat" exit 1; - fi - - su - zimbra -c "/opt/zimbra/bin/zmcertmgr deploycrt comm /etc/myacme/${FQDN_1}/${FQDN_1}.cer /opt/zimbra/ssl/zimbra/commercial/commercial_ca.crt" - CERT_RCODE=$(su - zimbra -c"echo $?") - if [ $CERT_RCODE -eq 1 ]; then +fi +cp ${FQDN_1}.key /opt/zimbra/ssl/zimbra/commercial/commercial.key +su - zimbra -c "/opt/zimbra/bin/zmcertmgr deploycrt comm /tmp/${FQDN_1}.cer /tmp/fullchain.cer" +CERT_RCODE=$(su - zimbra -c"echo $?") +if [ $CERT_RCODE -eq 1 ]; then echo "erreur dans la mise en place du certificat" exit 1; - fi - su - zimbra -c "zmcontrol restart" fi -if [ $RCODE -eq 1 ]; then - echo Erreur de renouvellement - exit 1; -fi - +su - zimbra -c "zmcontrol restart"