webserver certificate generate

Generates a REST API Server certificate.

User Privileges

Users with the following privileges can perform this command:

>Admin

Syntax

webserver certificate generate -keytype <key_type> [-keysize <size>] [-curve <curve_name>] [-restart] [-force]

Argument(s) Shortcut Description
-keytype <key_type> -keyt

Key type.

Valid values: ecc,rsa

-keysize <size> -keys

RSA key size (default: 2048).

Valid values: 2048,3072,4096

-curve <curve_name> -c

Elliptic Curve name (ECC only, default: secp384r1).

Valid values: secp256k1,secp384r1,secp521r1,prime256v1

-force -f Force the action without prompting.
-restart -r Restart the REST API service if parameter is specified. Otherwise, the administrator must restart the REST API service via other means (i.e., service start webserver).

Example

lunash:>webserver certificate generate -keytype rsa -restart

WARNING: This operation will generate/regenerate the REST API Server certificate !!!

Type 'proceed' to continue, or 'quit' to quit now.

> proceed
Proceeding...

Restarting REST API service...
Redirecting to /bin/systemctl restart  webserver.service

REST API Server Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            d6:93:f0:66:1c:04:9f:34
    Signature Algorithm: sha384WithRSAEncryption
        Issuer: C=CA, ST=Ontario, L=Ottawa, O=Thales, CN=local_host
        Validity
            Not Before: Mar  1 20:22:56 2017 GMT
            Not After : Feb 27 20:22:56 2027 GMT
        Subject: C=CA, ST=Ontario, L=Ottawa, O=Thales, CN=local_host
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:cf:f2:56:9b:22:24:f2:4e:bb:ab:8b:d3:38:42:
                    24:65:0d:98:13:de:62:92:8f:5b:a5:6b:a5:ea:15:
                    aa:08:f7:ae:c4:62:58:cf:54:3c:0b:16:fe:ba:71:
                    93:ac:a9:71:14:f0:a7:41:94:0f:34:80:cc:fd:6d:
                    d2:ae:2b:8d:a5:ef:f2:25:43:d6:5e:08:59:b7:1b:
                    a1:7a:dc:96:08:c1:ee:c0:35:41:1e:90:7f:16:d1:
                    32:d0:c6:4c:6b:df:3c:b3:48:2d:14:5f:fa:cc:b4:
                    cf:11:27:3a:74:14:80:17:eb:87:c8:f6:41:35:91:
                    c6:c5:60:67:87:d7:58:ba:b0:7b:97:b8:a9:08:de:
                    67:c9:2d:cf:ac:08:3e:a1:c1:31:23:b3:cd:96:7b:
                    af:45:4e:fd:e6:80:61:28:52:4e:27:27:9c:d6:01:
                    19:ef:74:6e:15:7d:51:d4:62:be:38:a8:8f:04:7e:
                    82:18:7c:75:a5:6a:4c:10:3e:d8:ec:86:03:52:fe:
                    f7:15:0a:45:55:f4:ae:be:c7:88:e5:6b:09:be:18:
                    27:96:54:c2:ad:30:8e:43:d9:0e:f4:4a:00:06:28:
                    fb:08:cd:df:af:31:e3:1d:58:95:f8:51:90:ee:5a:
                    48:3a:21:83:f1:53:59:a8:8f:7c:cf:e8:0f:b2:09:
                    1c:49
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:20:E0:21:B8:19:7F:11:0B:57:7C:3E:0D:CA:70:63:6D:97:E4:CD
            X509v3 Authority Key Identifier:
                keyid:C1:20:E0:21:B8:19:7F:11:0B:57:7C:3E:0D:CA:70:63:6D:97:E4:CD

            X509v3 Basic Constraints:
                CA:TRUE
    Signature Algorithm: sha384WithRSAEncryption
        6c:b6:04:92:f9:52:6f:ae:1f:ef:b8:fa:f9:40:16:97:28:10:
        f2:13:64:af:cb:67:63:4b:81:42:cb:00:cb:5a:9b:39:2d:88:
        30:c1:75:bc:90:69:33:67:51:1c:05:c0:b1:e2:88:47:8e:ad:
        48:28:eb:d0:24:e0:48:46:b0:5a:97:e8:c8:0d:39:b9:13:e3:
        78:5a:c2:f6:66:cf:25:97:8e:0b:47:70:41:7e:e1:46:f5:4a:
        25:9a:b0:3f:43:2b:4c:ed:64:b0:2d:24:13:17:2f:bd:09:11:
        c0:15:f2:da:aa:7e:9d:27:2e:b5:cd:7d:0d:b5:80:23:14:3a:
        8c:fc:e2:76:92:d1:87:1b:9e:a5:c6:ef:b2:a0:af:f3:15:cc:
        41:84:5c:d1:fc:d3:3f:9a:c1:65:b0:bf:3c:be:e9:07:f4:25:
        45:ff:f0:65:a7:a6:38:d8:f8:13:55:a6:ee:b1:9f:4a:31:c1:
        d5:e2:b7:a2:f1:8d:07:72:cc:39:d1:4f:34:a7:df:1d:bc:4e:
        d0:94:c4:f2:f9:a0:53:c4:fb:fe:03:4a:01:13:8b:bd:c0:ef:
        ed:1b:90:c8:ec:e9:26:ee:90:9f:94:f2:9c:62:8e:09:55:27:
        26:fb:00:02:3b:6b:5b:53:8a:b4:9c:25:7c:33:78:ec:40:30:
        02:09:cf:20

Command Result : 0 (Success)