1pki-user-membership(1P)KI User Membership Management Commanpdksi-user-membership(1)
2
3
4
6 pki-user-membership - Command-Line Interface for managing Certificate
7 System user memberships.
8
9
11 pki [CLI options] <subsystem>-user-membership
12 pki [CLI options] <subsystem>-user-membership-find <user ID> [command options]
13 pki [CLI options] <subsystem>-user-membership-add <user ID> <group ID> [command options]
14 pki [CLI options] <subsystem>-user-membership-del <user ID> <group ID> [command options]
15
16
18 The pki-user-membership commands provide command-line interfaces to
19 manage user memberships on the specified subsystem.
20
21 Valid subsystems are ca, kra, ocsp, tks, and tps. If the <subsystem>-
22 prefix is omitted, it will default to ca.
23
24 pki [CLI options] <subsystem>-user-membership
25 This command is to list available user membership commands for the
26 subsystem.
27
28 pki [CLI options] <subsystem>-user-membership-find <user ID> [command
29 options]
30 This command is to list groups in which the subsystem user is a
31 member.
32
33 pki [CLI options] <subsystem>-user-membership-add <user ID> <group ID>
34 [command options]
35 This command is to add the subsystem user into a group.
36
37 pki [CLI options] <subsystem>-user-membership-del <user ID> <group ID>
38 [command options]
39 This command is to delete the subsystem user from a group.
40
41
43 The CLI options are described in pki(1).
44
45
47 To view available user membership commands, type pki <subsystem>-user-
48 membership. To view each command's usage, type pki <subsystem>-user-
49 membership-<command> --help.
50
51 All user membership commands must be executed as the subsystem adminis‐
52 trator.
53
54 For example, to list groups in which a CA user is a member execute the
55 following command:
56
57 pki <CA admin authentication> ca-user-membership-find testuser
58
59 The results can be paged by specifying the (0-based) index of the first
60 entry to return and the maximum number of entries returned:
61
62 pki <CA admin authentication> ca-user-membership-find testuser --start
63 20 --size 10
64
65 The above command will return entries #20 to #29.
66
67 To add a CA user into a group, specify the user ID and the group ID in
68 the following command:
69
70 pki <CA admin authentication> ca-user-membership-add testuser Adminis‐
71 trators
72
73 To delete a CA user from a group, specify the user ID and the group ID
74 in the following command:
75
76 pki <CA admin authentication> ca-user-membership-del testuser Adminis‐
77 trators
78
79
81 Endi S. Dewata <edewata@redhat.com>.
82
83
85 Copyright (c) 2015 Red Hat, Inc. This is licensed under the GNU General
86 Public License, version 2 (GPLv2). A copy of this license is available
87 at http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
88
89
90
91version 10.2 Aug 24, 2015 pki-user-membership(1)