From 0a6dbdebbe0c5518d41038d826d2656c400331af Mon Sep 17 00:00:00 2001 From: Deon Lackey Date: Wed, 18 Aug 2010 19:45:34 -0400 Subject: beginning to add in pk12util draft --- pk12util.xml | 181 +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 181 insertions(+) create mode 100644 pk12util.xml diff --git a/pk12util.xml b/pk12util.xml new file mode 100644 index 0000000..8e83b87 --- /dev/null +++ b/pk12util.xml @@ -0,0 +1,181 @@ + + + + + + August 2010 + + pk12util + + + + + 1 + + + + pk12util + Export and import keys and certificate to or from a PKCS #12 file and the NSS database + + + + + pk12util + + + + + + + + Description + pk12util is an interactive command-line tool which can be used to export keys and certificates from an nss database to a pkcs #12 file or import from one such file into the database. It can also list the contents of a pkcs #12 file. + + + + Options + + + p12file + Import keys and certs from p12file into the nss database. + + + + p12file + List the keys and certs in p12file. + + + + p12file + Export keys and certs from the nss database to 12file. + + + + certname + Specify the nickname of the cert and private key to export. + + + + dir + Specify the database directory into which to import to or export from certificates and keys. + If not specified the directory defaults to $HOME/.netscape (when $HOME exists in the environment), + or to ./.netscape (when $HOME does not exist in the environment. + + + + + prefix + Specify the prefix used on the cert8.db and key3.db files + (for example, my_cert8.db and my_key3.db). This option is provided as a special case. + Changing the names of the certificate and key databases is not recommended. + + + + tokenname + Specify the name of the token to import into or export from. + + + + + Enable debug logging when importing. + + + + slotPasswordFile + Specify the text file containing the slot's password. + + + + slotPassword + Specify the slot's password. + + + + p12filePasswordFile + Specify the text file containing the pkcs #12 file password. + + + + p12filePassword + Specify the pkcs #12 file password. + + + + keyCipher + Specify the key encryption algorithm. + + + + certCipher + Specify the key cert (overall package) encryption algorithm. + + + + keyLength + Specify the desired length of the symmetric key to be used to encrypt the private key. + + + + certKeyLength + Specify the desired length of the symmetric key to be used to encrypt the certificates and other meta-data. + + + + + + Basic Usage + The example will do this and that + +% blah blah + line 2 + line 3 + + Subsection + + sentence #2 + + + sentence #3 + + + + + Extended Examples + The following example will do this and that + +% blah blah + + + + See Also + % reference to other tool here % + + + + + Additional Resources + NSS is maintained in conjunction with PKI and security-related projects through Mozilla dn Fedora. The most closely-related project is Dogtag PKI, with a project wiki at http://pki.fedoraproject.org/wiki/. + For information specifically about NSS, the NSS project wiki is located at http://www.mozilla.org/projects/security/pki/nss/. The NSS site relates directly to NSS code changes and releases. + Mailing lists: pki-devel@redhat.com and pki-users@redhat.com + IRC: Freenode at #dogtag-pki + + + + + Authors + The NSS tools were written and maintained by developers with Netscape and now with Red Hat. + + Authors: Elio Maldonado <emaldona@redhat.com>, Deon Lackey <dlackey@redhat.com>, Gerhardus Geldenhuis <gerhardus.geldenhuis@gmail.com>. + + + + + + Copyright + (c) 2010, Red Hat, Inc. Licensed under the GNU Public License version 2. + + + -- cgit