1pki-pkcs12-cert(1)PKI PKCS #12 Certificate Management Commandspki-pkcs12-cert(1)
2
3
4

NAME

6       pki-pkcs12-cert  -  Command-Line Interface for managing individual cer‐
7       tificates in PKCS #12 file.
8
9

SYNOPSIS

11       pki [CLI options] pkcs12-cert
12       pki [CLI options] pkcs12-cert-find [command options]
13       pki [CLI options] pkcs12-cert-export <nickname> [command options]
14       pki [CLI options] pkcs12-cert-add <nickanme> [command options]
15       pki [CLI options] pkcs12-cert-mod <nickname> [command options]
16       pki [CLI options] pkcs12-cert-del <nickname> [command options]
17
18

DESCRIPTION

20       The pki pkcs12-cert commands provide command-line interfaces to  manage
21       certificates in a PKCS #12 file.
22
23
24       pki [CLI options] pkcs12-cert-find [command options]
25           This command is to list certificates in a PKCS #12 file.
26
27       pki [CLI options] pkcs12-cert-export <nickname> [command options]
28           This command is to export a certificate from a PKCS #12 file.
29
30       pki [CLI options] pkcs12-cert-add <nickname> [command options]
31           This command is to add a certificate into a PKCS #12 file.
32
33       pki [CLI options] pkcs12-cert-mod <nickname> [command options]
34           This command is to modify a certificate in a PKCS #12 file.
35
36       pki [CLI options] pkcs12-cert-del <nickname> [command options]
37           This command is to delete a certificate from a PKCS #12 file.
38
39

OPTIONS

41       The CLI options are described in pki(1).
42
43

OPERATIONS

45       To  view available profile commands, type pki pkcs12-cert. To view each
46       command's usage, type  pki pkcs12-cert-<command> --help.
47
48       All pkcs12-cert commands require a PKCS #12 file and its password.  The
49       PKCS  #12  file can be specified with the --pkcs12-file parameter.  The
50       password can be specified either directly  with  the  --pkcs12-password
51       parameter, or in a file with the --pkcs12-password-file parameter.
52
53       Some pki pkcs12-cert commands require an NSS database and its password.
54       The NSS database location  can  be  specified  with  the  -d  parameter
55       (default: ~/.dogtag/nssdb).  The NSS database password can be specified
56       with the -c or the -C parameter.
57
58
59   Viewing certificates in a PKCS #12 file
60       To list the certificates in a PKCS #12 file:
61
62       pki pkcs12-cert-find <PKCS #12 file> <PKCS #12 password>
63
64
65   Exporting a certificate from a PKCS #12 file
66       To export a certificate from a PKCS #12 file into a file in PEM format:
67
68       pki pkcs12-cert-export <nickname> <PKCS #12 file> <PKCS  #12  password>
69       <cert file>
70
71       The certificate file can be specified with the --cert-file parameter.
72
73
74   Adding a certificate from an NSS database into a PKCS #12 file
75       To  add  a  certificate  including  its key and trust flags from an NSS
76       database into a PKCS #12 file:
77
78       pki <NSS database location>  <NSS  database  password>  pkcs12-cert-add
79       <nickname> <PKCS #12 file> <PKCS #12 password>
80
81       If  the PKCS #12 file does not exist, it will be created automatically.
82       If the PKCS #12 file already exists, the certificate will be added into
83       the file.
84
85       The  trust  flags  can be overwritten with the --trust-flags parameter.
86       If the key is not needed, specify the --no-key parameter.
87
88
89   Modifying a certificate in a PKCS #12 file
90       To modify the trust flags of a certificate in a PKCS #12 file:
91
92       pki pkcs12-cert-mod <nickname> <PKCS  #12  file>  <PKCS  #12  password>
93       <trust flags>
94
95       The trust flags can be specified with the --trust-flags parameter.
96
97
98   Deleting a certificate from a PKCS #12 file
99       To delete a certificate and its key from a PKCS #12 file:
100
101       pki pkcs12-cert-del <nickname> <PKCS #12 file> <PKCS #12 password>
102
103

AUTHORS

105       Endi S. Dewata <edewata@redhat.com>.
106
107

COPYRIGHT

109       Copyright (c) 2016 Red Hat, Inc. This is licensed under the GNU General
110       Public License, version 2 (GPLv2). A copy of this license is  available
111       at http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
112
113

SEE ALSO

115       pki-pkcs12(1)
116
117
118
119version 10.3                     Oct 28, 2016               pki-pkcs12-cert(1)