1. Updating Systems and Adding Software in Oracle Solaris 11.4
  2. Configuring Installed Images
  3. Configuring Publishers
  4. Adding, Modifying, or Removing Package Publishers
  5. Configuring Publisher Keys and Certificates

Configuring Publisher Keys and Certificates

Example 5-3 Specify a Publisher Key and Certificate

Use the -k option to specify the client SSL key. Use the -c option to specify the client SSL certificate. The hashes of the key and certificate are listed in the output of the pkg publisher command for this publisher. See Displaying Publisher Information and SSL Certificate Problem. 

$ pkg set-publisher -k /tmp/keyfile -c /tmp/certfile publisher-name

Each publisher can have only one key and certificate specified. If a publisher has multiple secure origins configured, all secure origins share the one key and certificate.

Example 5-4 Revoke a Publisher Key and Certificate

Use the --revoke-ca-cert option to treat the specified certificate as revoked. The hashes of the user-revoked CA certificates are listed in the output of the pkg publisher command for this publisher.

Use the --unset-ca-cert option to remove the specified certificate from the list of approved certificates and from the list of revoked certificates.