1keyclient(8)                System Manager's Manual               keyclient(8)
2
3
4

NAME

6       keyclient - generate and distribute keys on behalf of Pubcookie.
7
8

SYNOPSIS

10       keyclient [options]
11              Download host key from the keyserver.
12
13       keyclient -P <host> [options]
14              Allow <host> to also access the keyserver.
15
16       keyclient -U <cert file> [options]
17              Upload <cert file> to the keyserver.
18
19       keyclient -G <gcert file> [options]
20              Download  granting  certificate from the keyserver, and write it
21              to <gcert file>.
22
23

DESCRIPTION

25       keyclient is used by participating  Pubcookie  application  servers  to
26       securely request keys from the login server's keyserver component.
27
28

OPTIONS

30       -f <config file>
31              Use alternate configuration file.
32
33       -K <URI>
34              URI of key management server (running keyserver).
35
36       -k <key file>
37              Key to use for TLS authentication.
38
39       -a     Expect key file in ASN.1 format.
40
41       -p     Expect key file in PEM format (default).
42
43       -c <cert file>
44              Certificate to use for TLS authentication.
45
46       -C <cert file>
47              CA certificate to use for client verification.
48
49       -D <CA directory>
50              Directory of trusted CAs, hashed OpenSSL-style.
51
52       -H <host name>
53              Specify requesting host name. Useful when the application server
54              uses a wildcard certificate (CN is *.subdomain.example.edu),  or
55              if  the  application  server  host name is one of several in the
56              certificate's Subject Alt Name field.
57
58       -K <URI>
59              Directory of trusted CAs, hashed OpenSSL-style.
60
61       -d     Download existing, rather than generating new host key.
62
63       -u     Upload local host key to keyserver.
64
65       -n     Just show what would be done.
66
67       -q     Quiet mode.
68
69
70

FILES

72       /etc/pubcookie/config
73
74

SEE ALSO

76       keyserver (8)
77       xinetd (8)
78       openssl (1)
79       /usr/share/doc/mod_pubcookie*/doc/*.html
80
81
82
83                                                                  keyclient(8)
Impressum