3.2. Usage

3.2. Usage

The options are slightly different between the subsystems; all subsystems except for the CA subsystem require extra options specifying the Certificate Authority to which to submit the certificate requests.

This silent installation script example installs a CA subsystem: 

perl pkisilent ConfigureCA -cs_hostname localhost  -cs_port 9543
 -client_certdb_dir /tmp/ -client_certdb_pwd redhat -preop_pin sYY8er834FG9793fsef7et5
 -domain_name "testca" -admin_user admin -admin_email "admin@redhat.com"
 -admin_password redhat -agent_name "rhpki-ca2 agent" -agent_key_size 256
 -agent_key_type ecc -agent_cert_subject "ca agent cert" -ldap_host server
 -ldap_port 389 -bind_dn "cn=directory manager" -bind_password redhat
 -base_dn "o=rhpki-ca2" -db_name "rhpki-ca2" -key_size 256
 -key_type ecc -save_p12 true -backup_pwd redhat

This silent installation script example installs a TKS subsystem; this script has extra options to point to the CA server: 

perl pkisilent ConfigureTKS -cs_hostname localhost  -cs_port 13543
 -ca_hostname server.example.com -ca_port 9080 -ca_ssl_port 9443
 -ca_agent_name agent -ca_agent_password redhat
 -client_certdb_dir /tmp/ -client_certdb_pwd redhat -preop_pin fS44I6SASGF34FD76WKJHIW4
 -domain_name "testca" -admin_user admin -admin_email "admin@redhat.com"
 -admin_password redhat -agent_name "rhpki-tks2 agent" -ldap_host server
 -ldap_port 389 -bind_dn "cn=directory manager" -bind_password redhat
 -base_dn "o=rhpki-tks2" -db_name "rhpki-tks2" -key_size 256
 -key_type ecc -agent_key_size 256  -agent_key_type ecc
 -agent_cert_subject "tks agent cert" -backup_pwd redhat

This silent installation script example installs a TPS subsystem; this script has extra options to point to the LDAP authentication database used for storing token information: 

perl pkisilent ConfigureTPS -cs_hostname localhost  -cs_port 7988
 -ca_hostname server.example.com -ca_port 9080 -ca_ssl_port 9443
 -ca_agent_name agent -ca_agent_password redhat
 -client_certdb_dir /tmp/ -client_certdb_pwd redhat -preop_pin fS44I6SASGF34FD76WKJHIW4
 -domain_name "testca" -admin_user admin -admin_email "admin@redhat.com"
 -admin_password redhat -agent_name "rhpki-tks2 agent" -ldap_host server
 -ldap_port 389 -bind_dn "cn=directory manager" -bind_password redhat
 -base_dn "o=rhpki-tks2" -db_name "rhpki-tks2" -key_size 256
 -key_type ecc -agent_key_size 256  -agent_key_type ecc
 -agent_cert_subject "tps agent cert" -ldap_auth_host server
 -ldap_auth_port 389 -ldap_auth_base_dn "o=TPS DB,dc=example,dc=com"