PKI User CLI - dogtagpki/pki GitHub Wiki

Overview

Each PKI subsystem (i.e. CA, KRA, OCSP, TKS, TKS) provides a CLI to manage the system users. All commands must be executed as an administrator of the corresponding subsystem. However, the default the admin can authenticate as the administrator of all subsystems. See Importing Admin Certificate into PKI CLI.

In general the commands follow the following format:

$ pki <admin authentication> <subsystem>-user-<command>

For example, in the command below the default admin certificate is used to access TPS users:

$ pki -n caadmin tps-user-find

Listing Users

$ pki -n caadmin ca-user-find
-----------------
3 entries matched
-----------------
  User ID: CA-pki.example.com-8443
  Full name: CA-pki.example.com-8443

  User ID: caadmin
  Full name: caadmin

  User ID: pkidbuser
  Full name: pkidbuser
----------------------------
Number of entries returned 3
----------------------------

Displaying User Details

$ pki -n caadmin ca-user-show caadmin
--------------
User "caadmin"
--------------
  User ID: caadmin
  Full name: caadmin
  Email: [email protected]
  Type: adminType
  State: 1

Adding User

$ pki -n caadmin ca-user-add testuser --fullName "Test User"
---------------------
Added user "testuser"
---------------------
  User ID: testuser
  Full name: Test User

Modifying User

$ pki -n caadmin ca-user-mod testuser --email [email protected]
------------------------
Modified user "testuser"
------------------------
  User ID: testuser
  Full name: Test User
  Email: [email protected]

Deleting User

$ pki -n caadmin ca-user-del testuser
-----------------------
Deleted user "testuser"
-----------------------

See Also

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
⚠️ **GitHub.com Fallback** ⚠️