acb26f22a1
The virt-pki-validate command can validate the system certificate directories. The remote driver, however, also supports a standard per-user certs location, as well as a runtime custom path. This extends the validation tool to be able to cope with these alternate locations too. Reviewed-by: Michal Privoznik <mprivozn@redhat.com> Signed-off-by: Daniel P. Berrangé <berrange@redhat.com>
1.9 KiB
virt-pki-validate
validate libvirt PKI files are configured correctly
- Manual section
1
- Manual group
Virtualization Support
SYNOPSIS
virt-pki-validate [OPTION] [trustclient]
DESCRIPTION
This tool validates that the necessary PKI files are configured for a secure libvirt server or client using the TLS encryption protocol. It will report any missing certificate or key files on the host. It should be run as root to ensure it can read all the necessary files
With no arguments it will check the trusted CA config, the server config and the client config. The optional positional argument can be used to restrict the checks to just one of these three sets.
OPTIONS
-h, --help
Display command line help usage then exit.
-V, --version
Display version information then exit.
EXIT STATUS
Upon successful validation, an exit status of 0 will be set. Upon failure a non-zero status will be set.
AUTHOR
Daniel Veillard, Daniel P. Berrangé
BUGS
Please report all bugs you discover. This should be done via either:
the mailing list
the bug tracker
Alternatively, you may report bugs to your software distributor / vendor.
COPYRIGHT
Copyright (C) 2006-2024 by Red Hat, Inc.
LICENSE
virt-pki-validate is distributed under the terms of the GNU GPL v2+. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE
SEE ALSO
virsh(1), online PKI setup instructions, https://libvirt.org/