All Packages Class Hierarchy This Package Previous Next Index
java.lang.Object | +----orbasec.tools.Subject | +----orbasec.tools.CA
The syntax for this program is:
Options: help Print this screen generate -ca Generate a Certificate Authority; CAs sign their own certificates -use-ca <ca-file> Use the CA defined in <ca-file> as the signing authority for the certficate -kpa <alg> Use Algorithm <alg> for KeyPair generation, where <alg> is DSA, RSA, or DH (default: DSA) -filename <value> Filename for cert file (Default: cert) -passwd <password> Use <password> to encrypt the private key in the generated cert-file. (Default: blahblah). -encoding pem|der Encoding for cert file (Default: pem) -country <value> The country field for generated X509Certificate (Default: US) -locality <value> The locality field for generated X509Certificate (Default: Syracuse) -organization <value> The organization field for generated X509Certificate (Default: Adiron) -commonName <value> The commonName field for generated X509Certificate -expiry #m | #h | #o The expiration time for generated X509Certificate, given in minutes (m), hours (h), or months (o) (Default: 6 months) dump <cert-file> Dumps the contents of <cert-file> verify <cert-file> Verify the certificates in <cert-file> NOTES: o If a cert-file private key is signed with blahblah (the default), then the cert-file can be automatically read; otherwise, you will be prompted for a password. o Do not use the -ca and -use-ca options simultaneously; first make a CA using the -ca option, and then use the CA defined in the cert file to sign certificates. o Do not use DH as a KeyPair generation algorithm for CAs, since the CA will not then be able to sign X509Certificates. o In this simple program, you can only supply single tokens as values to the command-line arguments.
public static void main(String argv[])
All Packages Class Hierarchy This Package Previous Next Index