set-cert-trust-prop

Syntax

tadm set-cert-trust-prop common_options [--token=name] 
--config=config_name --nickname=nick_name (property_name=property_value)+

Description

Use this command to set the certificate trust properties. A certificate is issued and digitally signed by a certificate authority (CA). You decide which CAs you trust enough to serve as verifiers of other users' identity. The set-cert-trust-prop command prompts for a token password if the token is password protected.

Options

For information about common_options, run the help command.

--token|-t

Specify the token (cryptographic device), which contains the encrypted public key.

--config|-c

Specify the name of the configuration to set certificate trust properties.

--nickname|-n

Specify the short name (nickname) of the certificate for which you want to set trust properties.

Operands

property-name=property-value

Specify name=value pairs for one or more properties that you want to define. The name=value pairs should be separated by spaces.

You can set the following certificate trust properties:

Nickname: Specify the nickname for the certificate trust.
Value: Must be a text string.

Subject: Specify the subject for the certificate trust.
Value: Must be a text string.

Issuer: Specify the issuer information for the certificate trust.
Value: Must be a text string.

Valid From: Specify the certificate validity start date.
Value: Must be a text string.

Valid Till: Specify the certificate validity end date.
Value: Must be a text string.

Fingerprint: Specify the fingerprint information for the certificate trust.
Value: Must be a text string.

Serial Number: Specify the serial number information for the certificate trust.
Value: Must be a text string.

Trusted to sign Client Certificates: Specify whether the CA is trusted to sign client certificates.
Values: true, false. Default: true

Trusted to sign Server Certificates: Specify whether the CA is trusted to sign server certificates.
Values: true, false. Default: true

To reset a property to its default value, do not provide a property value.
For example, property-name=<empty_string>

Example

tadm set-cert-trust-prop --user=admin --host=admin.example.com --password-file=./admin.passwd --port=8989 
--prompt=false --config=www.example.org Trusted to sign client certificates=true 

Exit Codes

The following exit values are returned:

0: command executed successfully

>0: error in executing the command

For more information about exit codes and syntax notations, run the help command.

See Also

help, get-cert-prop, create-cert-request, list-certs, install-cert, delete-cert, create-selfsigned-cert