PKI Server ACME Realm CLI - dogtagpki/pki GitHub Wiki

Displaying ACME Realm Configuration

Realm configuration for DS:

$ pki-server acme-realm-show
  Realm Type: ds
  Server URL: ldap://ds.example.com:3389
  Authentication Type: BasicAuth
  Bind DN: cn=Directory Manager
  Bind Password: ********
  Users DN: ou=people,dc=acme,dc=pki,dc=example,dc=com
  Groups DN: ou=groups,dc=acme,dc=pki,dc=example,dc=com

Modifying ACME Realm Configuration

$ pki-server acme-realm-mod
The current value is displayed in the square brackets.
To keep the current value, simply press Enter.
To change the current value, enter the new value.
To remove the current value, enter a blank space.

Enter the type of the realm. Available types: ds, in-memory, postgresql.
  Realm Type: ds

Enter the location of the LDAP server (e.g. ldap://localhost.localdomain:389).
  Server URL [ldap://localhost.localdomain:389]: ldap://ds.example.com:3389

Enter the authentication type. Available types: BasicAuth, SslClientAuth.
  Authentication Type [BasicAuth]:

Enter the bind DN.
  Bind DN [cn=Directory Manager]:

Enter the bind password.
  Bind Password [********]: Secret.123

Enter the base DN for the ACME users subtree.
  Users DN [ou=people,dc=acme,dc=pki,dc=example,dc=com]:

Enter the base DN for the ACME groups subtree.
  Groups DN [ou=groups,dc=acme,dc=pki,dc=example,dc=com]:

Initializing ACME Realm

If this is the first ACME instance, initialize the ACME realm with the following command:

$ pki-server acme-realm-init

For each additional ACME replica, configure the ACME realm replication.

Availability: Since PKI 11.9.

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
⚠️ **GitHub.com Fallback** ⚠️