refs #1666 provisional certs in NFS server

script/journal-upload.sh

@@ -73,6 +73,21 @@ cp "$CA_DIR/certs/$CERT_NAME.crt.pem" /etc/ssl/certs/
 cp "$CA_DIR/private/$CERT_NAME.key.nopass.pem" /etc/ssl/private/$CERT_NAME.key.pem
 chmod 600 /etc/ssl/private/$CERT_NAME.key.pem
 
+# Copiar contenido de CA_DIR a LOCAL_MOUNT
+DEST_DIR="$LOCAL_MOUNT/srv/artefactos/oglog/CA"
+mkdir -p "$DEST_DIR"
+cp -r "$CA_DIR/"* "$DEST_DIR/"
+
+# Reemplazar certificados en el directorio de filebeat
+FILEBEAT_DIR="/opt/opengnsys/ogclone-engine/ogclient/lib/filebeat"
+
+cp "$CA_DIR/certs/ca.crt.pem" "$FILEBEAT_DIR/ca.crt.pem"
+cp "$CA_DIR/certs/$CERT_NAME.crt.pem" "$FILEBEAT_DIR/oglog-agent-fb.opengnsys.crt.pem"
+cp "$CA_DIR/private/$CERT_NAME.key.nopass.pem" "$FILEBEAT_DIR/oglog-agent-fb.opengnsys.key.pem"
+
+chmod 600 "$FILEBEAT_DIR/oglog-agent-fb.opengnsys.key.pem"
+chwon -R opengnsys:opengnsys "$FILEBEAT_DIR"
+
 # Configuración journal-upload
 sed -i -e '/DynamicUser/s/.*/DynamicUser=no/' \
        -e '/User/s/.*/User=root/' \

script/oglog_installer.sh

@@ -150,7 +150,11 @@ get_cert_name() {
 }
 
 # Directorio base
-CA_DIR="./CA"
+if [ -d "$LOCAL_MOUNT/srv/artefactos/oglog/CA" ]; then
+  CA_DIR="$LOCAL_MOUNT/srv/artefactos/oglog/CA"
+else
+  CA_DIR="./CA"
+fi
 
 # Certificados por componente
 cp "$CA_DIR/certs/ca.crt.pem" /etc/opensearch/