1tpmtoken_import(1)          General Commands Manual         tpmtoken_import(1)
2
3
4
5                       TPM Management - tpmtoken_import
6

NAME

8       tpmtoken_import  -  import  an  X.509 certficate and/or an RSA key pair
9       into the user's TPM PKCS#11 data store
10

SYNOPSIS

12       tpmtoken_import [ OPTION ] FILE
13
14

DESCRIPTION

16       tpmtoken_import imports a PEM formatted representation of an X.509
17       certificate and/or an RSA key contained in FILE.
18
19       Importing an X.509 certificate creates an X.509 Public Key Certificate
20       PKCS#11 object and also an RSA Public Key PKCS#11 object using the RSA
21       public key contained in the certificate.  The certificate's key must be
22       an RSA key in order for the certificate to be successfully processed by
23       this command.
24
25       Importing an RSA key creates an RSA Public Key and an RSA Private Key
26       PKCS#11 object.  In order to associate the RSA PKCS#11 objects with an
27       X.509 Public Key Certificate PKCS#11 object, the RSA PKCS#11 objects
28       must have a subject name and key identifier associated with them.  This
29       can be accomplished by supplying the corresponding X.509 certificate as
30       an optional command parameter.
31
32       The input can contain PEM formatted representations of both an X.509
33       certificate and an RSA key. If both representations are present then an
34       X.509 Public Key Certificate PKCS#11 object, an RSA Public Key PKCS#11
35       object and an RSA Private Key PKCS#11 object are created.
36
37
38       -h, --help
39              Display command usage info.
40
41       -v, --version
42              Display command version info.
43
44       -l, --log [none|error|info|debug]
45              Set logging level.
46
47       -i, --idfile FILE
48              Use FILE as the PEM formatted X.509 certificate input used to
49              obtain the subject and id attributes
50
51       -k, --token STRING
52              Use STRING to identify the label of the PKCS#11 token to be used
53
54       -n, --name STRING
55              Use STRING as the label for the imported object(s)
56
57       -p, --public
58              Import the object(s) as a public object
59
60       -t, --type key|cert
61              Import only the specified object type
62
63       -y, --yes
64              Assume an answer of yes for any confirmation prompts that would
65              normally be asked
66
67

SEE ALSO

69       tpmtoken_init(1), tpmtoken_setpasswd(1), tpmtoken_objects(1),
70       tpmtoken_protect(1)
71
72

REPORTING BUGS

74       Report bugs to <trousers-users@lists.sourceforge.net>
75
76
77
78TPM Management                    2005-04-25                tpmtoken_import(1)
Impressum