From 6fbb8432dfc841a8d68f522fbcc5ba3cac794c31 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Love=20H=C3=B6rnquist=20=C3=85strand?= <lha@kth.se>
Date: Sun, 14 Jan 2007 18:34:48 +0000
Subject: [PATCH] Examples for pk-init.

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19901 ec53bebd-3082-4978-b11e-865c3cabbd6b
---
 doc/hx509.texi | 22 ++++++++++++++++++++--
 1 file changed, 20 insertions(+), 2 deletions(-)

diff --git a/doc/hx509.texi b/doc/hx509.texi
index 272540288..fb835260d 100644
--- a/doc/hx509.texi
+++ b/doc/hx509.texi
@@ -528,10 +528,28 @@ hxtool issue-certificate \
           ...
 @end example
 
-
-
 @subsection PK-INIT
 
+How to create a certificate for a KDC.
+
+@example
+hxtool issue-certificate \
+    --type="pkinit-kdc" \
+    --pk-init-principal="krbtgt/TEST.H5L.SE@@TEST.H5L.SE" \
+    --hostname kerberos.test.h5l.se \
+    --hostname pal.test.h5l.se \
+    ...
+@end example
+
+How to create a certificate for a user.
+
+@example
+hxtool issue-certificate \
+    --type="pkinit-client" \
+    --pk-init-principal="user@@TEST.H5L.SE" \
+    ...
+@end example
+
 @subsection XMPP/Jabber
 
 The jabber server certificate should have a dNSname that is the same as