Setting up CA Database User with PKI Tools - dogtagpki/pki GitHub Wiki

Overview

This page describes the process to set up a user to access the CA database in DS with PKI tools.

Adding Database User

$ pki-server ca-user-add \
    --full-name pkidbuser \
    --type agentType \
    pkidbuser

In PKI 11.6 or later the user certificate can be specified with the --cert <path> option.

Assigning Certificate to Database User

$ pki-server ca-user-cert-add \
    --cert /var/lib/pki/pki-tomcat/conf/certs/subsystem.crt \
    pkidbuser

Granting Access to Database User

$ pki-server ca-db-access-grant \
    uid=pkidbuser,ou=people,dc=ca,dc=pki,dc=example,dc=com
⚠️ **GitHub.com Fallback** ⚠️