Chapter 5.Using RHN BootstrapRed Hat provides a tool designed to accomplish much of the reconfiguration described within thisguide in one fell swoop: RHN Bootstrap. This tool plays an integral role in the RHN Satellite ServerInstallation Program, enabling generation of the bootstrap script during installation.But RHN Proxy Server customers and those who’ve updated their Satellite settings need abootstrap tool that can be used separately. The RHN Bootstrap, invoked with the command/usr/bin/rhn-bootstrap, serves that purpose and comes installed by default on either RHNServer.If used correctly, the script this tool generates can be run from any client system to conduct thefollowing tasks:• Redirect client applications to the RHN Proxy or Satellite• Import custom GPG keys• Install SSL certificates• Register the system to RHN and particular system groups and channels with the help of activationkeys• Perform miscellaneous post-configuration activities, including updating packages, performing re-boots, and altering RHN configurationCustomers should note, however, the inherent risks of using a script to conduct configuration. Becausesecurity tools such as SSL certificates are being installed by the script itself, they do not yet exist onthe systems and cannot be used to process transactions. This does allow for the possibility of someoneimpersonating the Satellite and transmitting bad data. This is mitigated by the fact that virtually allSatellites and client systems operate behind customer firewalls and are restricted from outside traffic.Registration is conducted via SSL and therefore protected.The bootstrap script bootstrap.sh is automatically placed in the/var/www/html/pub/bootstrap/ directory of the RHN Server. From there it can be downloadedand run on all client systems. Note that some preparation and post-generation editing is required, asidentified in the following sections. Refer to Section 5.4 RHN Bootstrap Options for the tool’scomplete list of options. Finally, refer to the Appendix A Sample Bootstrap Script for an examplescript.5.1. PreparationSince RHN Bootstrap (rhn-bootstrap) depends on other components of the Red Hat Networkinfrastructure to properly configure client systems, those components must be prepared before scriptgeneration. The following list identifies suggested measures to be taken first:• Generate activation keys to be called by the script(s). Activation keys can be used to register RedHat Enterprise Linux systems, entitle them to an RHN service level, and subscribe them to specificchannels and system groups, all in one action. Note that you must have Management entitlementsavailable to use an activation key, while inclusion of multiple activation keys at once requires Pro-visioning entitlements. Generate activation keys through the Activation Keys page within the Sys-tems category of the RHN website (either the central RHN Servers for Proxy or the fully qualifieddomain name of the Satellite). Refer to the Red Hat Update Agent and RHN Website chapters ofthe RHN Reference Guide for instructions on creation and use.