summaryrefslogtreecommitdiffstats
path: root/docs/certmaster-ca.pod
blob: fce3f730339d611e6520281c8b88e0946544c079 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
=head1 NAME

certmaster-ca -- signs certificate requests gathered by certmaster.

=head1 SYNOPSIS

certmaster-ca --list 

certmaster-ca --sign machine.example.org

=head1 DESCRIPTION

"certmaster-ca --list"

The list command prints all certificates that have been requested from certmaster by a remote
service (such as funcd) but are not yet signed.

func commands can't be sent to a remote machine until the certificates have been signed.

"certmaster-ca --sign [hostname]"

This command is used to sign a certificate and send it back to the requester.

=head1 AUTO-SIGNING

The certmaster can be configured to make this command unneccessary; all incoming
requests can be signed automatically by certmaster.

To configure this, edit /etc/func/certmaster.conf.

=head1 ADDITONAL RESOURCES

See https://hosted.fedoraproject.org/projects/func/.  It's a Wiki.

See also the manpages for "func", "func-inventory", "funcd", and "certmaster".

=head1 AUTHOR

Various. See https://hosted.fedoraproject.org/projects/func