PKI REQUEST SIGN

Level

pki,modify LICENCE PKI

History

Appears in Netasq 9.0.0

Description

Sign the request with the specified authority. You must have the private key of the authority.
If no authority name is given, the default one is taken.

For a SmartCard type, you must have an email and have define the CRLDP of the authority.
You can also specify the UPN (UserPrincipalName) used to login in Windows environment.
For a server certificate you can specify ALTNAMES with a semicolon separated list of IP or FQDN names.

Cache category

pki

Example

PKI REQUEST SIGN type=smartcard name="request_1" CN="John Doe" passphrase="secret" UPN="john.doe@COMPANY.DOMAIN"
PKI REQUEST SIGN type=server name="request_2" CN="www.companie.com" passphrase="secret" ALTNAMES="*.companie.com;companie.com;12.34.56.78;98.76.54.32"

Usage

type=<user|server|smartcard|ca>
name=<name>
passphrase=<pass>
[caname=<name>]
[shortname=<name>]
[nbdays=<days>]
[UPN=<userPrincipalName>]
[ALTNAMES=<list of ip or fqdn name separated by ;>]

Format

section