-
Notifications
You must be signed in to change notification settings - Fork 141
Importing Admin Certificate into PKI CLI
Endi S. Dewata edited this page May 5, 2021
·
14 revisions
This page describes the process to import the admin certificate into PKI CLI such that the admin certificate can be used from the command line.
This document assumes that the admin certificate and the key are stored
in a PKCS #12 file (e.g. ~/.dogtag/pki-tomcat/ca_admin_cert.p12) after CA installation,
and the PKCS #12 file is protected with a password specified in the
pki_client_pkcs12_password parameter during installation.
By default the PKI CLI uses an NSS database at ~/.dogtag/nssdb.
To import the PKCS #12 file into this NSS database,
store the password for the PKCS #12 file in a file (e.g. pkcs12_password.txt),
then execute the following command:
$ pki pkcs12-import \
--pkcs12 ~/.dogtag/pki-tomcat/ca_admin_cert.p12 \
--pkcs12-password-file pkcs12_password.txt
Then the certificate can be used by specifying a -n <nickname> parameter, for example:
$ pki -n caadmin ca-user-find
|
Tip
|
To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis. |