Secure Global Desktop Administration Guide > Commands > The tarantella security certuse command
tarantella security certuse
tarantella security certuse --certfile cfile
[ --keyfile kfile ]
Installs an X.509 certificate (or specifies the location of a previously installed certificate) to be used by the Sun Secure Global Desktop Security Pack.
Certificates must be Base 64-encoded PEM-format, with a header line including "BEGIN CERTIFICATE", as used by OpenSSL.
If no arguments are specified, this command reads the certificate
from standard input and installs it in
/opt/tarantella/var/tsp.
| Argument | Description |
|---|---|
--certfile cfile |
Specifies the location of a file containing the certificate. If no
--keyfile argument is specified, Secure Global Desktop
assumes that cfile contains both the certificate and the
corresponding private key.
You can use this option in two ways:
|
--keyfile kfile |
Specifies the location of a file containing the private key
required to decrypt the certificate in cfile.
Use this option to tell Secure Global Desktop about a private key
you've already installed. If you used the |
| Your circumstances are... | Type this... |
|---|---|
You used tarantella security
certrequest to
generate a CSR, which you sent to a Certificate Authority. The CA
returned a certificate to you, which you saved in a temporary file
/tmp/cert. |
tarantella security certuse < /tmp/cert |
You already have a certificate (you didn't use tarantella security certrequest). The
certificate is installed in /opt/certs/cert and the key
needed to decode it is installed in /opt/keys/key. |
tarantella security certuse --certfile /opt/certs/cert
--keyfile /opt/keys/key |
You already have a certificate (you didn't use tarantella security certrequest). A
single file /opt/certs/cert contains both the
certificate and the key needed to decode it. |
tarantella security certuse --certfile /opt/certs/cert |
Copyright © 1997-2005 Sun Microsystems, Inc. All rights reserved.