PKI Server ACME Realm CLI - dogtagpki/pki GitHub Wiki
Realm configuration for DS:
$ pki-server acme-realm-show Realm Type: ds Server URL: ldap://ds.example.com:3389 Authentication Type: BasicAuth Bind DN: cn=Directory Manager Bind Password: ******** Users DN: ou=people,dc=acme,dc=pki,dc=example,dc=com Groups DN: ou=groups,dc=acme,dc=pki,dc=example,dc=com
$ pki-server acme-realm-mod The current value is displayed in the square brackets. To keep the current value, simply press Enter. To change the current value, enter the new value. To remove the current value, enter a blank space. Enter the type of the realm. Available types: ds, in-memory, postgresql. Realm Type: ds Enter the location of the LDAP server (e.g. ldap://localhost.localdomain:389). Server URL [ldap://localhost.localdomain:389]: ldap://ds.example.com:3389 Enter the authentication type. Available types: BasicAuth, SslClientAuth. Authentication Type [BasicAuth]: Enter the bind DN. Bind DN [cn=Directory Manager]: Enter the bind password. Bind Password [********]: Secret.123 Enter the base DN for the ACME users subtree. Users DN [ou=people,dc=acme,dc=pki,dc=example,dc=com]: Enter the base DN for the ACME groups subtree. Groups DN [ou=groups,dc=acme,dc=pki,dc=example,dc=com]:
$ pki-server acme-realm-init
Availability: Since PKI 11.9.