Keine Bearbeitungszusammenfassung |
Keine Bearbeitungszusammenfassung |
||
| Zeile 4: | Zeile 4: | ||
{{:CLI/Cert.lang}} | {{:CLI/Cert.lang}} | ||
{{var | neu--Beschreibung aktualisiert | |||
| Beschreibung aktualisiert | |||
| Description updated }} | |||
{{var | neu--Layoutanpassungen | |||
| Layoutanpassungen | |||
| Layout adjustments }} | |||
</div>{{ | </div>{{Select_lang}} | ||
{{Header| | {{Header|06.2023| | ||
* | * {{#var:neu--Beschreibung aktualisiert}} | ||
* Layoutanpassungen | * {{#var:neu--Layoutanpassungen}} | ||
|[[ | |[[CLI/Cert_v11|v11]] | ||
|{{Menu|Extras|CLI}} | |||
}} | }} | ||
| Zeile 15: | Zeile 22: | ||
{| class="wikitable2 sortable" | {| class="wikitable2 sortable" | ||
|- | |- | ||
! style="min-width: 170px;" | {{#var: | ! style="min-width: 170px;" | {{#var:Befehl}} !! class="unsortable"| {{#var:Beschreibung}} !! class="unsortable"|{{#var:Beispiel}} !! {{#var:Ab Version}} | ||
|- | |- | ||
|cert unrevoke|| {{#var: | | cert unrevoke || {{#var:cert unrevoke--desc}} || <pre>cert unrevoke id 207</pre> || 11.6 | ||
cert unrevoke id 207 | |||
</pre> || 11.6 | |||
|- | |- | ||
|cert delete cert || {{#var: | | cert delete cert || {{#var:cert delete cert--desc}} || <pre>cert delete cert id 207</pre> || 11.8 | ||
| <pre> cert delete cert id 207 </pre> || 11.8 | |||
|- | |- | ||
|cert delete key|| {{#var: | | cert delete key || {{#var:cert delete key--desc}} || <pre>cert delete key id 207</pre>|| 11.6 | ||
|- | |- | ||
|cert delete crl|| {{#var: | | cert delete crl || {{#var:cert delete crl--desc}} || <pre>cert delete crl id 207</pre> || 11.6 | ||
|- | |- | ||
| cert get || {{#var:cert get--desc}} || <pre>cert get</pre> || 11.0 | |||
|- | |- | ||
|cert | | cert new || {{#var:cert new--desc}} || {{#var:Erstellt ein CA Zertifikat}}<br> <pre>cert new name "myCert" common_name "myCert" bits "2048" valid_since "2019-06-29-00-00-00" valid_till "2021-12-31-23-59-59" issuer_id "2" country "DE" state "NDS" location "LG" organization "SP" organization_unit "SP" email mail@test.local</pre> <br>{{#var:Erstellt ein RW Zertifikat}}<br> <pre>cert new name "MyRWCert" bits "2048" valid_since "2023-01-01-00-59-59" valid_till "2031-01-01-00-59-59" issuer "CA" country "DE" state "Niedersachsen" location "Lueneburg" organization "Securepoint GmbH" organization_unit "IT" email "support@securepoint.de" signature_algo "sha256WithRSAEncryption" issuer "SP_VPN_ROOT_CA" flags "KEY" issuer_id "2"</pre> || 11.0 | ||
|- | |- | ||
|cert | | cert set || {{#var:cert set--desc}} || <pre>cert set id 215 email info@test.local</pre> || 11.0 | ||
|- | |- | ||
| cert | | cert revoke || {{#var:cert revoke--desc}} || <pre>cert revoke id 215</pre> || 11.0 | ||
|- | |- | ||
| cert | | cert export x509 || {{#var:cert export x509--desc}} || <pre>cert export x509 id 215</pre> || 11.0 | ||
|- | |- | ||
| cert | | cert export privatekey || {{#var:cert export privatekey--desc}} || <pre>cert export privatekey id 215</pre> || 11.0 | ||
|- | |- | ||
| cert export | | cert export crl || {{#var:cert export crl--desc}} || <pre>cert export crl id 161</pre> || 11.0 | ||
|- | |- | ||
| cert export | | cert export pkcs12 || {{#var:cert export pkcs12--desc}} || <pre>cert export pkcs12 id "215" password insecure</pre> || 11.0 | ||
|- | |- | ||
| cert | | ''cert import'' || ''{{#var:cert import--desc}}'' || ''{{#var:cert import--val}}'' || ≤11.4 | ||
|- | |- | ||
| cert | | cert extension add || {{#var:cert extension add--desc}} || <pre>cert extension add id "151" ext_name "Netscape Cert Type" ext_value "SSL Server"</pre> || 11.0 | ||
|- | |- | ||
| | | cert extension delete || {{#var:cert extension delete--desc}} || <pre>cert extension delete "1"</pre> || 12.0 | ||
|- | |- | ||
| cert acme_account delete || {{#var:cert acme_account delete--desc}} || <pre>cert acme_account delete</pre> || 12.0 | |||
| cert acme_account delete|| {{#var:cert acme_account delete--desc}} || <pre> cert acme_account delete </pre> || 12.0 | |||
|- | |- | ||
| cert acme_account get|| {{#var:cert acme_account get--desc}} || <pre> cert acme_account get | | cert acme_account get || {{#var:cert acme_account get--desc}} || <pre>cert acme_account get</pre> || 12.0 | ||
|- | |- | ||
| cert acme_account | | cert acme_account new || {{#var:cert acme_account new--desc}} || <pre>cert acme_account new</pre> || 12.0 | ||
|- | |- | ||
| cert acme_account | | cert acme_account reset || {{#var:cert acme_account reset--desc}} || <pre>cert acme_account reset acme_account_id 1</pre> || 12.0 | ||
|- | |- | ||
| cert | | cert acme_account set || {{#var:cert acme_account set--desc}} || <pre>cert acme_account set flags <new flags></pre> || 12.0 | ||
|- | |- | ||
| cert acme_names | | cert acme_names get || {{#var:cert acme_names get--desc}} || <pre>cert acme_names get</pre> || 12.0 | ||
|- | |- | ||
| cert acme_names | | cert acme_names status || {{#var:cert acme_names status--desc}} || <pre>cert acme_names status acme_altname_list "myCert" acme_apikey_list "1234567-abcd-efgh-ijkl" acme_alias_list "myCert"</pre> || 12.0 | ||
|- | |- | ||
| cert | | cert acme_names verify || {{#var:cert acme_names verify--desc}} || <pre>cert acme_names verify acme_altname_list "myCert" acme_apikey_list "1234567-abcd-efgh-ijkl" acme_alias_list "myCert"</pre> || 12.0 | ||
|- | |- | ||
| cert parse|| {{#var:cert parse--desc}} || <pre> cert parse ? </pre> || 12.0 | | cert parse || {{#var:cert parse--desc}} || <pre>cert parse ?</pre> || 12.0 | ||
|} | |} | ||
Aktuelle Version vom 30. Juni 2023, 15:12 Uhr
Syntax des CLI-Befehls cert
Letzte Anpassung: 06.2023
Neu:
- Beschreibung aktualisiert
- Layoutanpassungen
notempty
Dieser Artikel bezieht sich auf eine Resellerpreview
| Befehl | Beschreibung | Beispiel | Ab Version |
|---|---|---|---|
| cert unrevoke | Wiederherstellen eines widerrufenen Zertifikates | cert unrevoke id 207 |
11.6 |
| cert delete cert | Entfernt ein Zertifikat vollständig notempty Achtung: Ein gelöschtes Zertifikat befindet sich anschließend auch nicht mehr auf der Liste der widerrufenen Zertifikate und kann damit z.B. wieder zum Verbindungsaufbau einer Gegenstelle genutzt werden! Dieser Befehl sollte notempty unter gar keinen Umständen verwendet werden, wenn ein Zertifikat bereits produktiv eingesetzt wurde! Er stellt lediglich eine Option dar, um Test-Zertifikate oder versehentlich falsch benannte Zertifikate wieder zu entfernen. |
cert delete cert id 207 |
11.8 |
| cert delete key | Entfernt den privaten Schlüssel aus einem Zertifikat | cert delete key id 207 |
11.6 |
| cert delete crl | Entfernt die importierte CRL (Certificate Revokation List) von einem Zertifikat | cert delete crl id 207 |
11.6 |
| cert get | Auflistung aller Zertifikate | cert get |
11.0 |
| cert new | Erstellen eines neuen Zertifikates | Erstellt ein CA Zertifikat:cert new name "myCert" common_name "myCert" bits "2048" valid_since "2019-06-29-00-00-00" valid_till "2021-12-31-23-59-59" issuer_id "2" country "DE" state "NDS" location "LG" organization "SP" organization_unit "SP" email mail@test.local Erstellt ein RW Zertifikat: cert new name "MyRWCert" bits "2048" valid_since "2023-01-01-00-59-59" valid_till "2031-01-01-00-59-59" issuer "CA" country "DE" state "Niedersachsen" location "Lueneburg" organization "Securepoint GmbH" organization_unit "IT" email "support@securepoint.de" signature_algo "sha256WithRSAEncryption" issuer "SP_VPN_ROOT_CA" flags "KEY" issuer_id "2" |
11.0 |
| cert set | Editieren eines bestehenden Zertifikates | cert set id 215 email info@test.local |
11.0 |
| cert revoke | Wiederrufen eines Zertifikates | cert revoke id 215 |
11.0 |
| cert export x509 | Export eines Zertifikates (Public-Key) | cert export x509 id 215 |
11.0 |
| cert export privatekey | Export eines Zertifikates(Private-Key) | cert export privatekey id 215 |
11.0 |
| cert export crl | Export der CRL | cert export crl id 161 |
11.0 |
| cert export pkcs12 | Export eines Zertifikates (PKCS12) | cert export pkcs12 id "215" password insecure |
11.0 |
| cert import | Import eines Zertifikates | Diese Funktion steht aktuell nicht direkt über das CLI zur Verfügung. | ≤11.4 |
| cert extension add | Hinzufügen von Extensions-Werten (z.B. für x509v3 Zertifikate) | cert extension add id "151" ext_name "Netscape Cert Type" ext_value "SSL Server" |
11.0 |
| cert extension delete | Löschung von Erweiterungen | cert extension delete "1" |
12.0 |
| cert acme_account delete | Entfernt ein acme-Zertifikat | cert acme_account delete |
12.0 |
| cert acme_account get | Auflistung aller acme-Zertifikate | cert acme_account get |
12.0 |
| cert acme_account new | Erstellen eines neuen acme-Zertifikates | cert acme_account new |
12.0 |
| cert acme_account reset | Zurücksetzten eines acme-Zertifikates | cert acme_account reset acme_account_id 1 |
12.0 |
| cert acme_account set | Editieren eines bestehenden acme-Zertifikates | cert acme_account set flags <new flags> |
12.0 |
| cert acme_names get | Auflistung aller acme-Zertifikatsnamen | cert acme_names get |
12.0 |
| cert acme_names status | Zeigt den Status des alternativen Namens an | cert acme_names status acme_altname_list "myCert" acme_apikey_list "1234567-abcd-efgh-ijkl" acme_alias_list "myCert" |
12.0 |
| cert acme_names verify | Verifizierung für die Konfiguration von alternativen Namen | cert acme_names verify acme_altname_list "myCert" acme_apikey_list "1234567-abcd-efgh-ijkl" acme_alias_list "myCert" |
12.0 |
| cert parse | cert parse ? |
12.0 |