Manually Scripting the ConfigurationNote that this chapter provides an alternative to using RHN Bootstrap to generate the bootstrapscript. With these instructions, you should be able to create your own bootstrap script fromscratch.All of the initial techniques have shared a common theme: the deployment of necessary files ina centralized location to be retrieved and installed using simple, scriptable commands run oneach client. In this chapter, we explore putting all of these pieces together to create a singlescript that can be invoked by any system in your organization.When we combine all of the commands from the previous chapters in the most sensible order,we get the following script. Keep in mind, rhn_register does not exist on Red Hat EnterpriseLinux 3 or later:# First, install the latest client RPMs to the system. rpm -Uvh \http://proxy-or-sat.example.com.com/pub/rhn_register-2.8.27-1.7.3.i386.rpm \http://proxy-or-sat.example.com.com/pub/rhn_register-gnome-2.8.27-1.7.3.i386.rpm\ http://proxy-or-sat.example.com.com/pub/up2date-3.0.7-1.i386.rpm \http://proxy-or-sat.example.com.com/pub/up2date-gnome-3.0.7-1.i386.rpm# Second, reconfigure the clients to talk to the correct server. perl -p -i-e 's/s/www\.rhns\.redhat\.com/proxy-or-sat\.example\.com/g' \/etc/sysconfig/rhn/rhn_register \ /etc/sysconfig/rhn/up2date# Third, install the SSL client certificate for your company's# RHN Satellite Server or RHN Proxy Server. rpm -Uvhhttp://proxy-or-sat.example.com/pub/rhn-org-trusted-ssl-cert-*.noarch.rpm# Fourth, reconfigure the clients to use the new SSL certificate. perl -p -i-e 's/^sslCA/#sslCA/g;' \ /etc/sysconfig/rhn/up2date/etc/sysconfig/rhn/rhn_register echo"sslCACert=/usr/share/rhn/RHN-ORG-TRUSTED-SSL-CERT" \ >>/etc/sysconfig/rhn/up2date echo"sslCACert=/usr/share/rhn/RHN-ORG-TRUSTED-SSL-CERT" \ >>/etc/sysconfig/rhn/rhn_register# Fifth, download the GPG key needed to validate custom packages. wget -O --q http://proxy-or-sat.example.com.com/pub/YOUR-RPM-GPG-KEY# Sixth, import that GPG key to your GPG keyring. rpm --import/path/to/YOUR-RPM-GPG-KEYRemember, the sixth step is documented here as it pertains to systems running Red Hat Linux 3or newer. For Red Hat Enterprise Linux 2.1, use the following command instead:gpg $(up2date --gpg-flags) --import /path/to/YOUR-RPM-GPG-KEYThis script comprises a clean and repeatable process that should fully configure any potentialChapter 6.31