Update to new hxtool issue-certificate usage

git-svn-id: svn://svn.h5l.se/heimdal/trunk/heimdal@19781 ec53bebd-3082-4978-b11e-865c3cabbd6b
This commit is contained in:
Love Hörnquist Åstrand
2007-01-09 10:58:15 +00:00
parent 555c798962
commit c792a0e800

View File

@@ -1303,10 +1303,9 @@ hxtool issue-certificate \
--self-signed \
--issue-ca \
--generate-key=rsa \
--out-key="ca.key" \
--subject="CN=CA,DC=test,DC=h5l,DC=se" \
--lifetime=10years \
--certificate="ca.der"
--certificate="FILE:ca.pem"
@end example
The KDC needs to have a certificate, so generate a certificate of the
@@ -1317,13 +1316,12 @@ You need to change --subject and --pk-init-principal in the command below.
@example
hxtool issue-certificate \
--ca-certificate=FILE:ca.der,ca.key \
--ca-certificate=FILE:ca.pem \
--generate-key=rsa \
--type="pkinit-kdc" \
--pk-init-principal="krbtgt/TEST.H5L.SE@@TEST.H5L.SE" \
--out-key="kdc.key" \
--subject="uid=kdc,DC=test,DC=h5l,DC=se" \
--certificate="kdc.der"
--certificate="FILE:kdc.pem"
@end example
The users also needs to have a certificates, so generate a certificate
@@ -1335,13 +1333,12 @@ You need to change --subject and --pk-init-principal in the command below.
@example
hxtool issue-certificate \
--ca-certificate=FILE:ca.der,ca.key \
--ca-certificate=FILE:ca.pem \
--generate-key=rsa \
--type="pkinit-client" \
--pk-init-principal="lha@@TEST.H5L.SE" \
--out-key="user.key" \
--subject="uid=lha,DC=test,DC=h5l,DC=se" \
--certificate="user.der"
--certificate="FILE:user.pem"
@end example