From f45db33f393ba171fa8fe8b53a348e25d14b5e6c Mon Sep 17 00:00:00 2001 From: Michael DeHaan Date: Thu, 27 Sep 2007 18:37:08 -0400 Subject: Updated wiki pages to mention one another, plus some miscellaneous cleanup and elaboration. Most of the content still lives on the Wiki as we expect it will change rather rapidly for a while. --- docs/certmaster-ca.pod | 17 +++++++++++++---- 1 file changed, 13 insertions(+), 4 deletions(-) (limited to 'docs/certmaster-ca.pod') diff --git a/docs/certmaster-ca.pod b/docs/certmaster-ca.pod index c818ef0..5251fd2 100644 --- a/docs/certmaster-ca.pod +++ b/docs/certmaster-ca.pod @@ -1,6 +1,6 @@ =head1 NAME -certmaster-ca -- signs certificates and makes them available to remote processes. +certmaster-ca -- signs certificate requests gathered by certmaster. =head1 SYNOPSIS @@ -12,19 +12,28 @@ certmaster-ca --sign machine.example.org "certmaster-ca --list" -The list command prints all certificates that have been requested but not yet signed. +The list command prints all certificates that have been requested from certmaster by a remote +service (such as funcd) but are not yet signed. + func commands can't be sent to a remote machine until the certificates have been signed. -If manual signing is not desirable, edit /etc/func/certmaster.conf to enable auto-signing. "certmaster-ca --sign [hostname]" This command is used to sign a certificate and send it back to the requester. -Neither this command, nor list, is needed when autosigning is enabled. + +=head1 AUTO-SIGNING + +The certmaster can be configured to make this command unneccessary; all incoming +requests can be signed automatically by certmaster. + +To configure this, edit /etc/func/certmaster.conf. =head1 ADDITONAL RESOURCES See https://hosted.fedoraproject.org/projects/func/. It's a Wiki. +See also the manpages for "func", "funcd", and "certmaster". + =head1 AUTHOR Various. See https://hosted.fedoraproject.org/projects/func -- cgit