diff options
Diffstat (limited to 'docs/certmaster-ca.pod')
-rw-r--r-- | docs/certmaster-ca.pod | 17 |
1 files changed, 13 insertions, 4 deletions
diff --git a/docs/certmaster-ca.pod b/docs/certmaster-ca.pod index c818ef0..5251fd2 100644 --- a/docs/certmaster-ca.pod +++ b/docs/certmaster-ca.pod @@ -1,6 +1,6 @@ =head1 NAME -certmaster-ca -- signs certificates and makes them available to remote processes. +certmaster-ca -- signs certificate requests gathered by certmaster. =head1 SYNOPSIS @@ -12,19 +12,28 @@ certmaster-ca --sign machine.example.org "certmaster-ca --list" -The list command prints all certificates that have been requested but not yet signed. +The list command prints all certificates that have been requested from certmaster by a remote +service (such as funcd) but are not yet signed. + func commands can't be sent to a remote machine until the certificates have been signed. -If manual signing is not desirable, edit /etc/func/certmaster.conf to enable auto-signing. "certmaster-ca --sign [hostname]" This command is used to sign a certificate and send it back to the requester. -Neither this command, nor list, is needed when autosigning is enabled. + +=head1 AUTO-SIGNING + +The certmaster can be configured to make this command unneccessary; all incoming +requests can be signed automatically by certmaster. + +To configure this, edit /etc/func/certmaster.conf. =head1 ADDITONAL RESOURCES See https://hosted.fedoraproject.org/projects/func/. It's a Wiki. +See also the manpages for "func", "funcd", and "certmaster". + =head1 AUTHOR Various. See https://hosted.fedoraproject.org/projects/func |