webserver certificate generate
Generates a REST API Server certificate.
User Privileges
Users with the following privileges can perform this command:
>Admin
Syntax
webserver certificate generate -keytype <key_type> [-keysize <size>] [-curve <curve_name>] [-restart] [-force]
Argument(s) | Shortcut | Description |
---|---|---|
-keytype <key_type> | -keyt |
Key type. Valid values: ecc,rsa |
-keysize <size> | -keys |
RSA key size (default: 2048). Valid values: 2048,3072,4096 |
-curve <curve_name> | -c |
Elliptic Curve name (ECC only, default: secp384r1). Valid values: secp256k1,secp384r1,secp521r1,prime256v1 |
-force | -f | Force the action without prompting. |
-restart | -r | Restart the REST API service if parameter is specified. Otherwise, the administrator must restart the REST API service via other means (i.e., service start webserver). |
Example
lunash:>webserver certificate generate -keytype rsa -restart WARNING: This operation will generate/regenerate the REST API Server certificate !!! Type 'proceed' to continue, or 'quit' to quit now. > proceed Proceeding... Restarting REST API service... Redirecting to /bin/systemctl restart webserver.service REST API Server Certificate: Data: Version: 3 (0x2) Serial Number: d6:93:f0:66:1c:04:9f:34 Signature Algorithm: sha384WithRSAEncryption Issuer: C=CA, ST=Ontario, L=Ottawa, O=Thales, CN=local_host Validity Not Before: Mar 1 20:22:56 2017 GMT Not After : Feb 27 20:22:56 2027 GMT Subject: C=CA, ST=Ontario, L=Ottawa, O=Thales, CN=local_host Subject Public Key Info: Public Key Algorithm: rsaEncryption Public-Key: (2048 bit) Modulus: 00:cf:f2:56:9b:22:24:f2:4e:bb:ab:8b:d3:38:42: 24:65:0d:98:13:de:62:92:8f:5b:a5:6b:a5:ea:15: aa:08:f7:ae:c4:62:58:cf:54:3c:0b:16:fe:ba:71: 93:ac:a9:71:14:f0:a7:41:94:0f:34:80:cc:fd:6d: d2:ae:2b:8d:a5:ef:f2:25:43:d6:5e:08:59:b7:1b: a1:7a:dc:96:08:c1:ee:c0:35:41:1e:90:7f:16:d1: 32:d0:c6:4c:6b:df:3c:b3:48:2d:14:5f:fa:cc:b4: cf:11:27:3a:74:14:80:17:eb:87:c8:f6:41:35:91: c6:c5:60:67:87:d7:58:ba:b0:7b:97:b8:a9:08:de: 67:c9:2d:cf:ac:08:3e:a1:c1:31:23:b3:cd:96:7b: af:45:4e:fd:e6:80:61:28:52:4e:27:27:9c:d6:01: 19:ef:74:6e:15:7d:51:d4:62:be:38:a8:8f:04:7e: 82:18:7c:75:a5:6a:4c:10:3e:d8:ec:86:03:52:fe: f7:15:0a:45:55:f4:ae:be:c7:88:e5:6b:09:be:18: 27:96:54:c2:ad:30:8e:43:d9:0e:f4:4a:00:06:28: fb:08:cd:df:af:31:e3:1d:58:95:f8:51:90:ee:5a: 48:3a:21:83:f1:53:59:a8:8f:7c:cf:e8:0f:b2:09: 1c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:20:E0:21:B8:19:7F:11:0B:57:7C:3E:0D:CA:70:63:6D:97:E4:CD X509v3 Authority Key Identifier: keyid:C1:20:E0:21:B8:19:7F:11:0B:57:7C:3E:0D:CA:70:63:6D:97:E4:CD X509v3 Basic Constraints: CA:TRUE Signature Algorithm: sha384WithRSAEncryption 6c:b6:04:92:f9:52:6f:ae:1f:ef:b8:fa:f9:40:16:97:28:10: f2:13:64:af:cb:67:63:4b:81:42:cb:00:cb:5a:9b:39:2d:88: 30:c1:75:bc:90:69:33:67:51:1c:05:c0:b1:e2:88:47:8e:ad: 48:28:eb:d0:24:e0:48:46:b0:5a:97:e8:c8:0d:39:b9:13:e3: 78:5a:c2:f6:66:cf:25:97:8e:0b:47:70:41:7e:e1:46:f5:4a: 25:9a:b0:3f:43:2b:4c:ed:64:b0:2d:24:13:17:2f:bd:09:11: c0:15:f2:da:aa:7e:9d:27:2e:b5:cd:7d:0d:b5:80:23:14:3a: 8c:fc:e2:76:92:d1:87:1b:9e:a5:c6:ef:b2:a0:af:f3:15:cc: 41:84:5c:d1:fc:d3:3f:9a:c1:65:b0:bf:3c:be:e9:07:f4:25: 45:ff:f0:65:a7:a6:38:d8:f8:13:55:a6:ee:b1:9f:4a:31:c1: d5:e2:b7:a2:f1:8d:07:72:cc:39:d1:4f:34:a7:df:1d:bc:4e: d0:94:c4:f2:f9:a0:53:c4:fb:fe:03:4a:01:13:8b:bd:c0:ef: ed:1b:90:c8:ec:e9:26:ee:90:9f:94:f2:9c:62:8e:09:55:27: 26:fb:00:02:3b:6b:5b:53:8a:b4:9c:25:7c:33:78:ec:40:30: 02:09:cf:20 Command Result : 0 (Success)