Syntax
Table 16-1 Options and Arguments for modutil
-mechanisms
mechanism-list
-installdir
root-installation-d
irectory
-tempdir
temporary-directory
-pwfile
old-password-file
-newpwfile
new-password-file
-slot slotname
-nocertdb
136
Netscape Certificate Management System Command-Line Tools Guide • October 2001
Specify the security mechanisms for which a particular module will be flagged
as a default provider. The mechanism-list is a colon-delimited list of mechanism
names. Enclose this list in quotation marks if it contains spaces. The module
becomes a default provider for the listed mechanisms when those mechanisms
are enabled. If more than one module claims to be a particular mechanism's
default provider, that mechanism's default provider is undefined. The
following mechanisms are currently available: RSA, DSA, RC2, RC4, RC5, DES,
DH, FORTEZZA, SHA1, MD5, MD2, RANDOM (for random number generation),
and FRIENDLY (meaning certificates are publicly readable).
Specify the root installation directory relative to which files will be installed by
the -jar JAR-file option. This directory should be one below which it is
appropriate to store dynamic library files (for example, a server's root
directory or the Netscape Communicator root directory).
The temporary directory is the location where temporary files will be created
in the course of installation by the -jar JAR-file option. If no temporary
directory is specified, the current directory will be used.
Specify a text file containing a token's existing password so that a password
can be entered automatically when the -changepw tokenname option is used to
change passwords.
Specify a text file containing a token's new or replacement password so that a
password can be entered automatically with the -changepw tokenname option.
Specify a particular slot to be enabled or disabled with the -enable
modulename or -disable modulename options.
Do not open the certificate or key databases. This has several effects:
• With the -create command, only a secmod.db file will be created;
cert7.db and key3.db will not be created.
• With the -jar command, signatures on the JAR file will not be checked.
• With the -changepw command, the password on the Netscape internal
module cannot be set or changed, since this password is stored in
key3.db.