PKI Server ACME Realm CLI - dogtagpki/pki GitHub Wiki

Displaying ACME Realm Configuration

Realm configuration for DS:

$ pki-server acme-realm-show
  Realm Type: ds
  Server URL: ldap://ds.example.com:3389
  Authentication Type: BasicAuth
  Bind DN: cn=Directory Manager
  Bind Password: ********
  Users DN: ou=people,dc=acme,dc=pki,dc=example,dc=com
  Groups DN: ou=groups,dc=acme,dc=pki,dc=example,dc=com

Modifying ACME Realm Configuration

$ pki-server acme-realm-mod
The current value is displayed in the square brackets.
To keep the current value, simply press Enter.
To change the current value, enter the new value.
To remove the current value, enter a blank space.

Enter the type of the realm. Available types: ds, in-memory, postgresql.
  Realm Type: ds

Enter the location of the LDAP server (e.g. ldap://localhost.localdomain:389).
  Server URL [ldap://localhost.localdomain:389]: ldap://ds.example.com:3389

Enter the authentication type. Available types: BasicAuth, SslClientAuth.
  Authentication Type [BasicAuth]:

Enter the bind DN.
  Bind DN [cn=Directory Manager]:

Enter the bind password.
  Bind Password [********]: Secret.123

Enter the base DN for the ACME users subtree.
  Users DN [ou=people,dc=acme,dc=pki,dc=example,dc=com]:

Enter the base DN for the ACME groups subtree.
  Groups DN [ou=groups,dc=acme,dc=pki,dc=example,dc=com]:

Initializing ACME Realm

$ pki-server acme-realm-init

Availability: Since PKI 11.9.

⚠️ **GitHub.com Fallback** ⚠️