Table of Contents
Advertisement
Chapter 3. SSL Infrastructure
This set of options must be preceded by the
Option
--gen-ca
,
-h
--help
,
-f
--force
,
-p=
--password=PASSWORD
,
-d=
--dir=BUILD_DIRECTORY
--ca-key=FILENAME
--ca-cert=FILENAME
--cert-expiration=CA_CERT_EXPIRE
--set-country=COUNTRY_CODE
--set-state=STATE_OR_PROVINCE
--set-city=CITY_OR_LOCALITY
--set-org=ORGANIZATION
argument:
--gen-ca
Description
Generate a Certificate Authority (CA)
key pair and public RPM. This must
be issued with any of the remaining
options in this table.
Display the help screen with a list of
base options specific to generating
and managing a Certificate Authority.
Forcibly create a new CA private key
and/or public certificate.
The CA password. You will be
prompted for this if it's missing.
Record it in a safe manner.
Required for most commands - The
directory where certificates and
RPMs are built. The default is
./ssl-build
The CA private key filename. The
default is
RHN-ORG-PRIVATE-SSL-KEY
The CA public certificate filename.
The default is
RHN-ORG-TRUSTED-SSL-CERT
The expiration date of the public CA
certificate. The default is the number
of days until one day prior to epoch
rollover (or 01-18-2038).
The two-letter country code. The
default is US.
The state or province of the CA. The
default is ".
The city or locality. The default is ".
The company or organization, such as
Red Hat. The default is Example
Corp. Inc.
.
.
.
17
Advertisement
Table of Contents
