1pkidaemon(1)                       pkidaemon                      pkidaemon(1)
2
3
4

NAME

6       pkidaemon - provides status management of PKI instances
7
8

SYNOPSIS

10       pkidaemon lt;start|statusgt; lt;instance-namegt;
11
12
13       Note:  Although  this tool currently resides in the /usr/bin directory,
14       proper use of it requires it to be run with super user privileges.
15
16

DESCRIPTION

18       The pkidaemon status argument provides a way to display the status of a
19       PKI instance.
20
21
22       The  pkidaemon  start argument is currently only used internally by the
23       systemctl scripts.
24
25

EXAMPLES

27       For the following examples, two instances were  installed.   The  first
28       contained  a  CA, KRA, OCSP, TKS and TPS in a shared PKI instance named
29       'pki-tomcat', while the second simply contained a CA running on differ‐
30       ent ports and named 'pki-tomcat-2'.
31
32
33       For  the  OCSP  'Unsecure  URL' and the OCSP 'Secure EE URL' which both
34       specify a static string of 'lt;ocsp request blobgt;', the intention  is
35       for  the user to replace this static string with an actual OCSP request
36       blob relevant to their particular deployment.
37
38
39   Listing the status of the PKI instance named 'pki-tomcat':
40              $ pkidaemon status pki-tomcat
41
42              Status for pki-tomcat: pki-tomcat is running ..
43
44                  [CA Status Definitions]
45                  Unsecure URL        = http://pki.example.com:8080/ca/ee/ca
46                  Secure Agent URL    = https://pki.example.com:8443/ca/agent/ca
47                  Secure EE URL       = https://pki.example.com:8443/ca/ee/ca
48                  Secure Admin URL    = https://pki.example.com:8443/ca/services
49                  PKI Console Command = pkiconsole https://pki.example.com:8443/ca
50                  Tomcat Port         = 8005 (for shutdown)
51
52                  [KRA Status Definitions]
53                  Secure Agent URL    = https://pki.example.com:8443/kra/agent/kra
54                  Secure Admin URL    = https://pki.example.com:8443/kra/services
55                  PKI Console Command = pkiconsole https://pki.example.com:8443/kra
56                  Tomcat Port         = 8005 (for shutdown)
57
58                  [OCSP Status Definitions]
59                  Unsecure URL        = http://pki.example.com:8080/ocsp/ee/ocsp/<ocsp request blob>
60                  Secure Agent URL    = https://pki.example.com:8443/ocsp/agent/ocsp
61                  Secure EE URL       = https://pki.example.com:8443/ocsp/ee/ocsp/<ocsp request blob>
62                  Secure Admin URL    = https://pki.example.com:8443/ocsp/services
63                  PKI Console Command = pkiconsole https://pki.example.com:8443/ocsp
64                  Tomcat Port         = 8005 (for shutdown)
65
66                  [TKS Status Definitions]
67                  Secure Agent URL    = https://pki.example.com:8443/tks/agent/tks
68                  Secure Admin URL    = https://pki.example.com:8443/tks/services
69                  PKI Console Command = pkiconsole https://pki.example.com:8443/tks
70                  Tomcat Port         = 8005 (for shutdown)
71
72                  [TPS Status Definitions]
73                  Unsecure URL        = http://pki.example.com:8080/tps
74                  Secure URL          = https://pki.example.com:8443/tps
75                  Unsecure PHONE HOME = http://pki.example.com:8080/tps/phoneHome
76                  Secure PHONE HOME   = https://pki.example.com:8443/tps/phoneHome
77                  Tomcat Port         = 8005 (for shutdown)
78
79                  [CA Configuration Definitions]
80                  PKI Instance Name:   pki-tomcat
81
82                  PKI Subsystem Type:  Root CA (Security Domain)
83
84                  Registered PKI Security Domain Information:
85                  ====================================================================
86                  Name:  example.com Security Domain
87                  URL:   https://pki.example.com:8443
88                  ====================================================================
89
90                  [KRA Configuration Definitions]
91                  PKI Instance Name:   pki-tomcat
92
93                  PKI Subsystem Type:  KRA
94
95                  Registered PKI Security Domain Information:
96                  ====================================================================
97                  Name:  example.com Security Domain
98                  URL:   https://pki.example.com:8443
99                  ====================================================================
100
101                  [OCSP Configuration Definitions]
102                  PKI Instance Name:   pki-tomcat
103
104                  PKI Subsystem Type:  OCSP
105
106                  Registered PKI Security Domain Information:
107                  ====================================================================
108                  Name:  example.com Security Domain
109                  URL:   https://pki.example.com:8443
110                  ====================================================================
111
112                  [TKS Configuration Definitions]
113                  PKI Instance Name:   pki-tomcat
114
115                  PKI Subsystem Type:  TKS
116
117                  Registered PKI Security Domain Information:
118                  ====================================================================
119                  Name:  example.com Security Domain
120                  URL:   https://pki.example.com:8443
121                  ====================================================================
122
123                  [TPS Configuration Definitions]
124                  PKI Instance Name:   pki-tomcat
125
126                  PKI Subsystem Type:  TPS
127
128                  Registered PKI Security Domain Information:
129                  ====================================================================
130                  Name:  example.com Security Domain
131                  URL:   https://pki.example.com:8443
132                  ====================================================================
133
134
135
136   Listing the status of the PKI instance named 'pki-tomcat-2':
137              $ pkidaemon status pki-tomcat-2
138
139              Status for pki-tomcat-2: pki-tomcat-2 is running ..
140
141                  [CA Status Definitions]
142                  Unsecure URL        = http://pki.example.com:18080/ca/ee/ca
143                  Secure Agent URL    = https://pki.example.com:18443/ca/agent/ca
144                  Secure EE URL       = https://pki.example.com:18443/ca/ee/ca
145                  Secure Admin URL    = https://pki.example.com:18443/ca/services
146                  PKI Console Command = pkiconsole https://pki.example.com:18443/ca
147                  Tomcat Port         = 18005 (for shutdown)
148
149                  [CA Configuration Definitions]
150                  PKI Instance Name:   pki-tomcat-2
151
152                  PKI Subsystem Type:  Root CA (Security Domain)
153
154                  Registered PKI Security Domain Information:
155                  ====================================================================
156                  Name:  example.com Security Domain
157                  URL:   https://pki.example.com:18443
158                  ====================================================================
159
160
161

SEE ALSO

163       pkispawn(8)
164       pkidestroy(8)
165       pki_default.cfg(5)
166       pki(1)
167
168

AUTHORS

170       Matthew Harmsen lt;mharmsen@redhat.comgt;.
171
172
174       Copyright (c) 2015 Red Hat, Inc.  This is licensed under the  GNU  Gen‐
175       eral  Public  License,  version  2  (GPLv2).  A copy of this license is
176       available at http://www.gnu.org/licenses/old-licenses/gpl-2.0.txt.
177
178
179
180PKI                               Jul 8, 2015                     pkidaemon(1)
Impressum