From 608d399434741e334c536d72d6f8272ad84ff002 Mon Sep 17 00:00:00 2001
From: Luca Beltrame <lbeltrame@kde.org>
Date: Mon, 5 Jul 2021 06:41:57 +0200
Subject: [PATCH] Import also the private key

---
 sysadmin/le_lan_reload_services.sh | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/sysadmin/le_lan_reload_services.sh b/sysadmin/le_lan_reload_services.sh
index 6298f16..6cbd75c 100644
--- a/sysadmin/le_lan_reload_services.sh
+++ b/sysadmin/le_lan_reload_services.sh
@@ -10,6 +10,11 @@ MIKROTIK_HOST="mikrotik"
 systemctl reload nginx
 systemctl restart sssd
 
+# Re-add the private key in LDAP *IMPORTANT*
+
+dsctl "${LDAP_SHORTNAME}" tls import-server-key-cert /etc/letsencrypt/live/"${LE_DOMAIN}"/fullchain.pem \
+            /etc/letsencrypt/live/"${LE_DOMAIN}"/privkey.pem
+
 # Re-import the certificate in the LDAP store
 
 dsconf -v -D "cn=Directory Manager" "${LDAP_SHORTNAME}" security certificate add \