Skip to content

PKI CLI Options

Jump to bottom
Gilbert Kimetto edited this page Oct 29, 2024 · 3 revisions

Bypassing Access Banner

If access banner is enabled on PKI server, the banner will appear before the actual operation is executed, for example:

$ pki cert-show 0x1
WARNING!
Access to this service is restricted to those individuals with
specific permissions. Any attempts to gain access, authorized
or not, and all operations that follow, are audited and could
be used against you in the court of law.

Do you want to proceed (y/N)? y
-----------------
Certificate "0x1"
-----------------
  Serial Number: 0x1
  Issuer: CN=CA Signing Certificate,OU=pki-tomcat,O=EXAMPLE
  Subject: CN=CA Signing Certificate,OU=pki-tomcat,O=EXAMPLE
  Status: VALID
  Not Before: Mon Feb 20 18:21:03 CET 2017
  Not After: Fri Feb 20 18:21:03 CET 2037

To bypass banner (e.g. for automation) specify the --ignore-banner option, for example:

$ pki --ignore-banner cert-show 0x1

See also Access Banner.

Configuring Message Format

By default CLI requests and responses are sent in XML format. To use JSON format:

$ pki --message-format json <command> ...

Storing CLI Messages

To store CLI requests and responses into files:

$ pki --output <output folder> <command> ...

The requests will be stored in http-request-<n>.

See Also

Tip
 To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis.
Clone this wiki locally