ipa-server-certinstall man page

ipa-server-certinstall — Install new SSL server certificates

Synopsis

ipa-server-certinstall [OPTION]... FILE...

Description

Replace the current SSL Directory and/or Apache server certificate(s) with the certificate in the specified files. The files are accepted in PEM and DER certificate, PKCS#7 certificate chain, PKCS#8 and raw private key and PKCS#12 formats.

PKCS#12 is a file format used to safely transport SSL certificates and public/private keypairs.

They may be generated and managed using the NSS pk12util command or the OpenSSL pkcs12 command.

The service(s) are not automatically restarted. In order to use the newly installed certificate(s) you will need to manually restart the Directory and/or Apache servers.

Options

-d, --dirsrv
Install the certificate on the Directory Server
-w, --http
Install the certificate in the Apache Web Server
--pin=PIN
The password to unlock the private key
--cert-name=NAME
Name of the certificate to install
--dirman-password=DIRMAN_PASSWORD
Directory Manager password

Exit Status

0 if the installation was successful

1 if an error occurred

Info

Mar 14 2008 FreeIPA FreeIPA Manual Pages