Lines Matching refs:certificate
163 -h When signing a key, create a host certificate instead of a user
164 certificate. Please see the CERTIFICATES section for details.
192 every key or certificate presented on the command line.
197 -L Prints the contents of a certificate.
221 included in a certificate when signing a key. Multiple
226 Specify a certificate option when signing a key. This option may
237 command specified by the user when the certificate is
271 Restrict the source addresses from which the certificate
331 Specify a validity interval when signing a certificate. A
333 the certificate is valid beginning now and expiring at that time,
362 Specifies a serial number to be embedded in the certificate to
363 distinguish this certificate from others from the same CA. The
408 its signature on a certificate rather than trusting many user/host keys.
414 authenticate server hosts to users. To generate a user certificate:
418 The resultant certificate will be placed in /path/to/user_key-cert.pub.
419 A host certificate requires the -h option:
423 The host certificate will be output to /path/to/host_key-cert.pub.
432 when the certificate is used for authentication.
436 users or hosts. To generate a certificate for a specified set of
443 be specified through certificate options. A certificate option may
446 command. For a list of valid certificate options, see the documentation
450 option allows specification of certificate start and end times. A
451 certificate that is presented at a time outside this range will not be
462 compact format, taking as little as one bit per certificate if they are
475 original certificate on hand. A KRL specification consists of lines
480 Revokes a certificate with the specified serial number. Serial
488 Revokes a certificate with the specified key ID string. The CA
493 Revokes the specified key. If a certificate is listed, then it