diff options
Diffstat (limited to 'pki/base/java-tools/doc/README')
-rw-r--r-- | pki/base/java-tools/doc/README | 133 |
1 files changed, 133 insertions, 0 deletions
diff --git a/pki/base/java-tools/doc/README b/pki/base/java-tools/doc/README new file mode 100644 index 000000000..a7f15bb25 --- /dev/null +++ b/pki/base/java-tools/doc/README @@ -0,0 +1,133 @@ + Fedora Certificate System + Java Command Line Utilities + + +Command Line Utility Purpose +============================================================================== +AtoB <input file> <output file> A command line utility utilized + to convert an ASCII BASE 64 + blob into a BINARY BASE 64 blob. + +AuditVerify A command line utility utilized + to verify signatures in signed + audit log files. + +BtoA <input file> <output file> A command line utility utilized + to convert a BINARY BASE 64 + blob into an ASCII BASE 64 blob. + +CMCEnroll A command line utility used to + sign a certificate enrollment + request with an agent's + certificate. + +CMCRequest A command line utility used to + construct a Certificate + Management Messages over + CMS (CMC) request. + +CMCResponse A command line utility used to + parse a CMC response. + +CMCRevoke A command line utility used to + sign a revocation request with + an agent's certificate. + +CRMFPopClient A command line utility used to + generate CRMF requests with + proof of possession (POP). + +ExtJoiner <ext_file0> . . . <ext_file9> A command line utility utilized + to join a sequence of extensions + together so that the final + output can be used in the + configuration wizard for + specifying extra extensions + in default certificates + (i. e. - CA certificate, + SSL certificate). + +GenExtKeyUsage [true|false] A command line utility utilized + <OID_1> . . . <OID_9> to generate a DER-encoded + Extended Key Usage extension. + The first parameter is the + criticality of the extension, + true or false. The OIDs to be + included in the extension are + passed as command-line + arguments. The OIDs are + described in RFC 2459. For + example, the OID for code + signing is 1.3.6.1.5.5.7.3.3. + +GenIssuerAltNameExt <general_type0> A command line utility utilized + <general_name0> to generate an issuer + . . . alternative name extension in + <general_type3> base-64 encoding. The encoding + <general_name3> output can be used with the + configuration wizard, where: + <general_type#> can be one + of the following strings: + DNSName + EDIPartyName + IPAddressName + URIName + RFC822Name + OIDName + X500Name + <general_name#> is a string + +GenSubjectAltNameExt <general_type0> A command line utility utilized + <general_name0> to generate a subject + . . . alternative name extension in + <general_type3> base-64 encoding. The encoding + <general_name3> output can be used with the + configuration wizard, where: + <general_type#> can be one + of the following strings: + DNSName + EDIPartyName + IPAddressName + URIName + RFC822Name + OIDName + X500Name + <general_name#> is a string + +HttpClient A command line utility used + to communicate with any + http/https server. + +OCSPClient A command line utility that + verifies certificate status by + submitting Online Certificate + Status Protocol (OCSP) requests + to an instance of an OCSP + subsystem. + +PKCS10Client A command line utility that + generates a Public Key + Cryptography Standards + (PKCS) #10 enrollment + request. + +PKCS12Export A command line utility utilized + to create PKCS12 file. + +PrettyPrintCert <input file> [output file] A command line utility utilized + to print the contents of a + certificate stored as an ASCII + BASE 64 encoded blob in a + user-friendly manner. + +PrettyPrintCrl <input file> [output file] A command line utility utilized + to print the contents of a + Certificate Revocation List + (CRL) stored as an ASCII + BASE 64 encoded blob in a + user-friendly manner. + +TokenInfo A command line utility utilized + to display all external HSMs + visible to JSS. + |