Generate PKI certificates and keys
Generate CA certificate
Sign generated CA certificate with another specified CA certificate
pki ca
Write generated CA certificate into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "$7" --sign "$5" --file
Commands for installing generated CA certificate into running configuration
<certificate name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "$7" --sign "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "noname" --sign "$5"
Write generated CA certificate into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "$5" --file
Commands for installing generated CA certificate into running configuration
<CA name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ca "noname"
Generate certificate request
Generate self-signed certificate
Write generated self-signed certificate into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$6" --self-sign --file
Commands for installing generated self-signed certificate into running configuration
<certificate name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$6" --self-sign --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "noname" --self-sign
Sign generated certificate with specified CA certificate
pki ca
Write generated signed certificate into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$7" --sign "$5" --file
Commands for installing generated signed certificate into running configuration
<certificate name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$7" --sign "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "noname" --sign "$5"
Write generated certificate request and key into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$5" --file
Commands for installing generated certificate private key into running configuration
<certificate name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --certificate "noname"
Generate CRL for specified CA certificate
pki ca
Write generated CRL into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --crl "$4" --file
Commands for installing generated CRL into running configuration
sudo ${vyos_op_scripts_dir}/pki.py --action generate --crl "$4" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --crl "$4"
Generate DH parameters
Write generated DH parameters into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --dh "$5" --file
Commands for installing generated DH parameters into running configuration
<DH name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --dh "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --dh "noname"
Generate a key pair
Write generated key pair into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --keypair "$5" --file
Commands for installing generated key pair into running configuration
<key name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --keypair "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --keypair "noname"
Generate OpenVPN keys
Generate OpenVPN shared secret key
Write generated OpenVPN shared secret key into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --openvpn "$6" --file
Commands for installing generated OpenVPN shared secret key into running configuration
<key name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --openvpn "$6" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --openvpn "noname"
Generate SSH key
Write generated SSH keys into the specified filename
<filename>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ssh "$5" --file
Commands for installing generated SSH key into running configuration
<key name>
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ssh "$5" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --ssh "noname"
Generate WireGuard keys
Generate WireGuard public/private key-pair
Generate CLI commands to install WireGuard key to configuration
WireGuard Interface used in install command
interfaces wireguard
sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key --interface "$7" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --key
Generate WireGuard pre-shared key
Generate CLI commands to install WireGuard key to configuration
WireGuard Interface used in install command
interfaces wireguard
Interface used for install command
interfaces wireguard ${COMP_WORDS[COMP_CWORD-2]} peer
sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk --interface "$7" --peer "$9" --install
sudo ${vyos_op_scripts_dir}/pki.py --action generate --wireguard --psk
Show PKI x509 certificates
Show x509 CA certificates
sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "all"
Show x509 CA certificate by name
pki ca
sudo ${vyos_op_scripts_dir}/pki.py --action show --ca "$4"
Show x509 certificates
sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "all"
Show x509 certificate by name
pki certificate
sudo ${vyos_op_scripts_dir}/pki.py --action show --certificate "all"
Show certificate revocation lists
Show certificate revocation lists from specified CA
pki ca
sudo ${vyos_op_scripts_dir}/pki.py --action show --crl "$5"
sudo ${vyos_op_scripts_dir}/pki.py --action show --crl "all"
sudo ${vyos_op_scripts_dir}/pki.py --action show