-
Notifications
You must be signed in to change notification settings - Fork 3
(06) CA‐Server Build Instructions
- VM name: CA-Server
- OS Image to use: ubuntu-22.04-live-server-amd64.iso Available at (https://ubuntu.com/download/server)
- Guest OS Family: linux
- Guest OS version: Ubuntu (x64) (VMware) or 6.x - 2.6 Kernel (ProxMox)
- Hardware settings: 1 CPU / 2GB RAM / 16 GB HD / 2 NIC
- Add 1 additional Network Adapter
- Set the Network Adaptor 1: “AdminNet”
- Set the Network Adaptor 2: “ServicesNet”
- Add 1 additional Network Adapter
During install, accept all defaults, only add OpenSSH during install. Also use the following for initial values;
- Your name: user
- Server name: ca-server
- Username: user
- Password: toor
After the install finishes, disconnect the iso, reboot and log in as User.
Then from the commandline, we’ll set up a password for the root account
sudo bash
passwd # use toor for the password
ip a # Take note of the first interfaces IP, should be like 172.30.0.x
On the IA-Proxy
Open a terminal as root. (NOTE: You should be non the IA-Proxy)
cd /home/user
scp -r Cyber-Range/ [email protected]:/home/user # _172.30.0.x _is IP from CA-Server
On the CA-Server
NOTE: Take a snapshot of CA-Server at this point, so you can revert if something goes wrong with the build.
After the snapshot continue on. (NOTE: you should be back on the CAServer VM)
cd /home/user/Cyber-Range
./ubuntubuild.sh
On the script menu select, “3) CA server", then enter “y” to confirm.
When it finishes, reboot
shutdown -r now
Log back in and check that the following files exist in the correct path.
- /root/ca/certs/ca.globalcert.com.crt.pem
- /root/ca/intermediate/certs/chain.globalcert.com.crt.pem
- /root/ca/intermediate/certs/int.globalcert.com.crt.pem
- /root/scripts/certmaker.sh
- /root/scripts/codesigncertmaker.sh
This completes the CA-Server install.