...
- cert_key_cube_default: your wildcard certificate private key with newline characters ("\n"). The content of the variable must be enclosed with single SINGLE quotes
- cert_chained_cube_default: the concatenation of your certificate and your Certificate Authority bundle. The variable must be a single line with newline characters ("\n") and must be enclosed with single quotes
...
- SINGLE quotes
Once your mno-deploy-* configuration package has been rebuilt (e.g. using Codeship) redeploy the orchestrator itself to update the configuration. You can do this through your favorite deployment tool (e.g. Rundeck) or by running the following commands on the Nex!™ orchestrator boxes directly:
Code Block |
---|
# E.g on AWS
bash <(curl -s http://169.254.169.254/latest/user-data)
# E.g. on Azure
bash /opt/maestrano/redeploy.sh |
b) Using Rails configuration
If you have deployed the Nex!™ orchestrator manually or using any other deployment framework (e.g. Chef) then you will need to modify your deployment variables to ensure that the Nex!™ config/application.yml file is setup properly.
On one of the orchestrator boxes navigate to the Nex!™ configuration folder:
Code Block |
---|
# Go to the Rails config folder
cd /apps/nex/current/config
# Edit the application.yml file
vi application.yml |
Ensure that the following configuration parameters are set properly:
Code Block |
---|
ssl_cert_key_cube_default: your wildcard certificate private key with newline characters ("\n"). The content of the variable must be enclosed with DOUBLE quotes.
ssl_cert_chained_cube_default: the concatenation of your certificate and your Certificate Authority bundle. The variable must be a single line with newline characters ("\n") and must be enclosed with DOUBLE quotes |
c) Final steps
Finally you need to instruct the Nex!™ orchestrator to reconfigure the routing racks. You can do so through the Nex!™ orchestrator console:
Code Block |
---|
# Access one of the Nex!™ orchestrator boxes via SSH
# Access the rails console
cd /apps/nex/current
bundle exec rails c <uat|production>
# Reconfigure all routing racks
RoutingRack.where(status:'running).each(&:sync_base_config) |