Set up MySQL in Certificate Manager using Podman
This article includes updates for Certificate Manager 8.11.0-1.
This article describes how to install and set up the MySQL database, used in Smart ID Certificate Manager (CM).
For detailed information about how to install MySQL, see the documentation available at https://www.mysql.com/ .
Prerequisites
Install the MySQL database according to the instructions for the downloaded MySQL installation package.
Extract the MySQL database scripts
create_db_and_role.sql
,create_cmdb.sql
,add_bootca.sql
, located at certificate-manager-8.X.Y-Z\install\MySQL, from the server containerization zip file.
Step-by-step instruction
Edit settings on the MySQL server
The database user created by the create_db_and_role.sql
script will use the default authentication plugin. In MySQL 8.0.4 the default authentication plugin has changed from mysql_native_password
to caching_sha2_password
.
Change the password for the lcmreq user, that will be created by the script below. The default password is REQreq01.
Change the user host settings in the script to define which host address the user will access the database from. The default value is '%' which indicates that the user may use the database from any host.
To enable interactive mode, login as superuser:
CODEmysql --user=root --password
Run the script, that creates the CMDB database, the
lcmreq
user and thecmdb_rw_role
role, from the current interactive mode:CODEsource create_db_and_role.sql >create_cmdb.log
Check the log file.
Run the script for creating the CMDB tables:
CODEsource create_cmdb.sql >create_cmdb.log
Check the log file.
Run the script for adding the bootca:
> source add_bootca.sql > add_bootca.log
Check the log file.
Edit settings on the CM server
Navigate to the volume hosting the cm server config directory and update the database parameters in cm.conf:
Database.name
Database.user
Database.password
Secure the connection
See Set up MySQL in Certificate Manager.