Put the certificates to the /etc/pki as suggested by: http://fedoraproject.org/wiki/PackagingDrafts/Certificates Nessus2 package in Fedora is using the same. diff -ru openvas-manager-2.0.2/CMakeLists.txt openvas-manager-2.0.2.new/CMakeLists.txt --- openvas-manager-2.0.2/CMakeLists.txt 2011-03-02 15:21:27.000000000 +0100 +++ openvas-manager-2.0.2.new/CMakeLists.txt 2011-03-29 03:24:12.000000000 +0200 @@ -151,14 +151,15 @@ set (OPENVAS_LOG_DIR "${LOCALSTATEDIR}/log/openvas") set (OPENVAS_PID_DIR "${LOCALSTATEDIR}/run") set (OPENVAS_SYSCONF_DIR "${SYSCONFDIR}/openvas") +set (OPENVAS_CERT_DIR "${SYSCONFDIR}/pki/openvas") set (OPENVAS_LIB_INSTALL_DIR "${LIBDIR}") set (OPENVAS_HEADER_INSTALL_DIR "${INCLUDEDIR}") -set (OPENVAS_SCANNER_CERTIFICATE "${OPENVAS_STATE_DIR}/CA/servercert.pem") -set (OPENVAS_SCANNER_KEY "${OPENVAS_STATE_DIR}/private/CA/serverkey.pem") -set (OPENVAS_CLIENT_CERTIFICATE "${OPENVAS_STATE_DIR}/CA/clientcert.pem") -set (OPENVAS_CLIENT_KEY "${OPENVAS_STATE_DIR}/private/CA/clientkey.pem") -set (OPENVAS_CA_CERTIFICATE "${OPENVAS_STATE_DIR}/CA/cacert.pem") +set (OPENVAS_SCANNER_CERTIFICATE "${OPENVAS_CERT_DIR}/CA/servercert.pem") +set (OPENVAS_SCANNER_KEY "${OPENVAS_CERT_DIR}/private/CA/serverkey.pem") +set (OPENVAS_CLIENT_CERTIFICATE "${OPENVAS_CERT_DIR}/CA/clientcert.pem") +set (OPENVAS_CLIENT_KEY "${OPENVAS_CERT_DIR}/private/CA/clientkey.pem") +set (OPENVAS_CA_CERTIFICATE "${OPENVAS_CERT_DIR}/CA/cacert.pem") set (OPENVAS_USERS_DIR "${OPENVAS_STATE_DIR}/users/") set (OPENVAS_NVT_DIR "${OPENVAS_STATE_DIR}/plugins/")