diff options
| author | Christina Fu <cfu@redhat.com> | 2016-07-07 14:02:18 -0700 |
|---|---|---|
| committer | Christina Fu <cfu@redhat.com> | 2016-07-08 17:21:53 -0700 |
| commit | 7164c2064a7f069f0943f64167eaab982068593d (patch) | |
| tree | 954f3f7412f1bb19a504bd0cf512ca20acdb1988 /base/tps/man/man5/pki-tps-connector.5 | |
| parent | 12e24ae0eb3f6fb7e0f71b95e3911f45594c5965 (diff) | |
| download | pki-7164c2064a7f069f0943f64167eaab982068593d.tar.gz pki-7164c2064a7f069f0943f64167eaab982068593d.tar.xz pki-7164c2064a7f069f0943f64167eaab982068593d.zip | |
Ticket #978 PPS connector man page: add revocation routing info
Diffstat (limited to 'base/tps/man/man5/pki-tps-connector.5')
| -rw-r--r-- | base/tps/man/man5/pki-tps-connector.5 | 23 |
1 files changed, 22 insertions, 1 deletions
diff --git a/base/tps/man/man5/pki-tps-connector.5 b/base/tps/man/man5/pki-tps-connector.5 index 6ee009ac1..b3e405e82 100644 --- a/base/tps/man/man5/pki-tps-connector.5 +++ b/base/tps/man/man5/pki-tps-connector.5 @@ -62,12 +62,26 @@ This property contains the maximum number of HTTP connections. .SS tps.connector.ca<n>.uri.<op> This property contains the URI to contact CA for the operation <op>. -Example ops: enrollment, renewal, revoke, unrevoke. +Example ops: enrollment, renewal, revoke, unrevoke, getcert. .SS tps.connector.ca<n>.timeout This property contains the connection timeout. +.SS tps.connector.connCAList + +This property is used for \fIRevocation Routing\fP. It contains a list of ordered ca id's separated by ',' that the revocation attempt should be made to. +Example: +tps.connCAList=ca1,ca2 + +.SS tps.connector.ca<n>.caNickname + +This property is used for \fIRevocation Routing\fP. It contains the nickname of the CA signing certificate that represents this ca<n>. + +.SS tps.connector.ca<n>.caSKI + +This property is used for \fIRevocation Routing\fP . It contains the Subject Key Identifier of the CA signing certificate of this ca<n>. This value is automatically calculated by TPS once and should not need handling by the administrator. + .SH KRA CONNECTOR A KRA connector is defined using properties that begin with tps.connector.kra<n> where @@ -182,6 +196,13 @@ tps.connector.ca1.uri.enrollment=/ca/ee/ca/profileSubmitSSLClient tps.connector.ca1.uri.renewal=/ca/ee/ca/profileSubmitSSLClient tps.connector.ca1.uri.revoke=/ca/ee/subsystem/ca/doRevoke tps.connector.ca1.uri.unrevoke=/ca/ee/subsystem/ca/doUnrevoke +# in case of Revocation Routing +# note that caSKI is automatically calculated by TPS +tps.connCAList=ca1,ca2 +tps.connector.ca1.caNickname=caSigningCert cert-pki-tomcat CA +tps.connector.ca1.caSKI=hAzNarQMlzit4BymAlbduZMwVCc +# ca2 connector in case of Revocation Routing +tps.connector.ca2.<etc.> tps.connector.kra1.enable=true tps.connector.kra1.host=server.example.com |