PKI Server HTTP Connector Cert CLI - dogtagpki/pki GitHub Wiki

Overview (UNDER CONSTRUCTION)

PKI provides tools to manage SSL certificate configuration.

Available since: PKI 10.7.

Listing SSL Certificates

$ pki-server http-connector-cert-find Secure _default_
-----------------
1 entries matched
-----------------
  Type: UNDEFINED
  Key Alias: sslserver
  Keystore Type: pkcs11
  Keystore Provider: Mozilla-JSS

Adding SSL Certificate

To configure SSL certificate with PEM files:

$ pki-server http-connector-cert-add Secure _default_ UNDEFINED \
    --certFile conf/sslserver.crt \
    --keyFile conf/sslserver.key

To configure SSL certificate with JKS keystore:

$ pki-server http-connector-cert-add Secure _default_ UNDEFINED \
    --keyAlias sslserver \
    --keystoreType pkcs12 \
    --keystoreFile conf/sslserver.p12 \
    --keystorePassword Secret.123

To configure SSL certificate with PKCS #12 keystore:

$ pki-server http-connector-cert-add Secure _default_ UNDEFINED \
    --keyAlias sslserver \
    --keystoreType pkcs12 \
    --keystoreFile conf/sslserver.p12 \
    --keystorePassword Secret.123

To configure SSL certificate with PKCS #11 keystore:

$ pki-server http-connector-cert-add Secure _default_ UNDEFINED \
    --keyAlias sslserver \
    --keystoreType pkcs11 \
    --keystoreProvider Mozilla-JSS

Deleting SSL Certificate

$ pki-server http-connector-cert-del Secure _default_ UNDEFINED

See Also

⚠️ **GitHub.com Fallback** ⚠️