IMPORTANT
Action required: Apply the fix for SNS firewall disks.
Please follow the procedure described in the How to update my SSD Firmware - Stormshield Knowledge Base article (authentication required).
PKI REQUEST SIGN
Level
pki,modify LICENCE PKI
History
Appears in Netasq 9.0.0
Description
Sign the request with the specified authority. You must have the private key of the authority.
If no authority name is given, the default one is taken.
For a SmartCard type, you must have an email and have define the CRLDP of the authority.
You can also specify the UPN (UserPrincipalName) used to login in Windows environment.
For a server certificate you can specify ALTNAMES with a semicolon separated list of IP or FQDN names.
CACHE_CATEGORY
pki
Example
PKI REQUEST SIGN type=smartcard name="request_1" CN="John Doe" passphrase="secret" UPN="john.doe@COMPANY.DOMAIN"
PKI REQUEST SIGN type=server name="request_2" CN="www.companie.com" passphrase="secret" ALTNAMES="*.companie.com;companie.com;12.34.56.78;98.76.54.32"
Usage
type=<user|server|smartcard|ca>
name=<name>
passphrase=<pass>
[caname=<name>]
[shortname=<name>]
[nbdays=<days>]
[UPN=<userPrincipalName>]
[ALTNAMES=<list of ip or fqdn name separated by ;>]
Format
section