diff options
| author | Petr Vobornik <pvoborni@redhat.com> | 2012-05-11 13:33:07 +0200 |
|---|---|---|
| committer | Martin Kosek <mkosek@redhat.com> | 2012-05-15 10:36:53 +0200 |
| commit | 4640f957ade4615972a9b857a8f2e1b97e524d01 (patch) | |
| tree | 4aa018163c7c5745c77a850f4dbd53bedff94df2 /ipalib/plugins | |
| parent | 1de37e8110e2b9fb69253cadfe4c1da1bc2e30f6 (diff) | |
| download | freeipa-4640f957ade4615972a9b857a8f2e1b97e524d01.tar.gz freeipa-4640f957ade4615972a9b857a8f2e1b97e524d01.tar.xz freeipa-4640f957ade4615972a9b857a8f2e1b97e524d01.zip | |
Instructions to generate cert use certutil instead of openssl
Instructions to generate certificate were changed. Now they use certutil instead of openssl. In the example is also used option for specifying key size.
https://fedorahosted.org/freeipa/ticket/2725
Diffstat (limited to 'ipalib/plugins')
| -rw-r--r-- | ipalib/plugins/internal.py | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/ipalib/plugins/internal.py b/ipalib/plugins/internal.py index 42737f7ff..30ab91640 100644 --- a/ipalib/plugins/internal.py +++ b/ipalib/plugins/internal.py @@ -322,7 +322,7 @@ class i18n_messages(Command): "privilege_withdrawn": _("Privilege Withdrawn"), "reason": _("Reason for Revocation"), "remove_from_crl": _("Remove from CRL"), - "request_message": _("<ol><li>Create a private key in a secure location, for example:<br/># openssl genrsa -out key.pem</li><li>Create a CSR with subject CN=${hostname},O=${realm}, for example:<br/># openssl req -new -key key.pem -out cert.csr \\<br/> -subj '/O=${realm}/CN=${hostname}'</li><li>Copy and paste the CSR below:</li></ol>"), + "request_message": _("<ol><li>Examples uses NSS database located in current directory. Replace \"-d .\" in example with \"-d /path/to/database\" if NSS database is located elsewhere. If you don't have a NSS database you can create one in current directory by \"certutil -N -d .\" </li><li>Create a CSR with \"CN=${hostname},O=${realm}\", for example:<br/># certutil -R -d . -a <em title=\"key size in bits\">-g 2048</em> -s 'CN=${hostname},O=${realm}'</li><li>Copy and paste the CSR (the text block which starts with \"-----BEGIN NEW CERTIFICATE REQUEST-----\" and ends with \"-----END NEW CERTIFICATE REQUEST-----\") below:</li></ol>"), "restore_certificate": _("Restore Certificate for ${entity} ${primary_key}"), "restore_confirmation": _("To confirm your intention to restore this certificate, click the \"Restore\" button."), "revoke_certificate": _("Revoke Certificate for ${entity} ${primary_key}"), |