-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathtoken.xml
28 lines (28 loc) · 1.35 KB
/
token.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
<?xml version="1.0" ?>
<!-- PKI service configurations -->
<pki:tokenConfig xmlns:pki="http://www.openca.org/openca/pki/1/0/0">
<!-- Token Name -->
<pki:name>CA</pki:name>
<!-- Token Type (software, hardware) -->
<pki:type>software</pki:type>
<!-- HSM specification for server token -->
<!-- <pki:hsm>software</pki:hsm> -->
<!-- Private key identifier (URI - file:// id:// etc.. ) -->
<pki:keypair>file:///usr/local/ocspd/etc/ocspd/private/ocspd.key</pki:keypair>
<!-- Certificate identifier (URI) -->
<pki:cert>file:///usr/local/ocspd/etc/ocspd/certs/ocspd.crt</pki:cert>
<!-- CA Certificate -->
<pki:cacert>file:///usr/local/ocspd/etc/ocspd/certs/ca.crt</pki:cacert>
<!-- Certificates -->
<!-- pki:othercerts>file::///usr/local/ocspd/etc/ocspd/certs/other-certs.pem</pki:othercerts //-->
<!-- pki:trustedcerts>file::///usr/local/ocspd/etc/ocspd/certs/trusted-certs.pem</pki:trustedcerts //-->
<!-- passin is used to specify the method for reading the token
password. The following options are available:
none ...... : do not prompt for any password
stdin ..... : reads from standard input
env:name .. : reads the password from env variable 'name'
-->
<!-- pki:passin>none</pki:passin> -->
<!-- ... or simply specify the password here -->
<!-- <pki:password></pki:password> -->
</pki:tokenConfig>