From 9ae2a531042f3ad9cbc4ed773657ed99555ca3c7 Mon Sep 17 00:00:00 2001 From: Nalin Dahyabhai Date: Tue, 27 Oct 2015 16:41:09 -0400 Subject: [PATCH 29/29] Document -R/-N/-o in dogtag-ipa-renew-agent-submit Add notes about the -R, -N, and -o flags to the man page for dogtag-ipa-renew-agent-submit. It's really just a version of dogtag-submit with different defaults compiled in, and that should already be reflected in the --help output, but overriding key behaviors while still using those defaults can be a useful thing in troubleshooting situations, so we should document them. Heads-up from Marco Rhodes. --- ...tmonger-dogtag-ipa-renew-agent-submit.8.in | 19 ++++++++++++++++++- src/certmonger-dogtag-submit.8.in | 3 ++- 2 files changed, 20 insertions(+), 2 deletions(-) diff --git a/src/certmonger-dogtag-ipa-renew-agent-submit.8.in b/src/certmonger-dogtag-ipa-renew-agent-submit.8.in index 481e396..3863b2a 100644 --- a/src/certmonger-dogtag-ipa-renew-agent-submit.8.in +++ b/src/certmonger-dogtag-ipa-renew-agent-submit.8.in @@ -1,4 +1,4 @@ -.TH certmonger 8 "18 Nov 2014" "certmonger Manual" +.TH certmonger 8 "27 Oct 2015" "certmonger Manual" .SH NAME dogtag-ipa-renew-agent-submit @@ -18,6 +18,8 @@ dogtag-ipa-renew-agent-submit -E EE-URL -A AGENT-URL [-S state] [-T profile] [-O param=value] +[-N | -R] +[-o option=value] [-v] [csrfile] @@ -134,6 +136,21 @@ settings are applied. This option can be used either to override a server-supplied default setting, or to supply one which would otherwise have not been used. .TP +\fB-N\fR +Even if an already-issued certificate is available in the +\fICERTMONGER_CERTIFICATE\fR environment variable, or a serial number has been +provided, don't attempt to renew a certificate using its serial number. +Instead, attempt to obtain a new certificate using the signing request. +The default behavior is to request a renewal if possible. +.TP +\fB-R\fR +Negates the effect of the \fB-N\fR flag. +.TP +\fB-o\fR param=value +When initially submitting a request to the CA, add the specified parameter and +value along with any request parameters which would otherwise be sent. This +option is not typically used. +.TP \fB-v\fR Increases the logging level. Use twice for more logging. This option is mainly useful for troubleshooting. diff --git a/src/certmonger-dogtag-submit.8.in b/src/certmonger-dogtag-submit.8.in index 54cd1b1..3a8fc87 100644 --- a/src/certmonger-dogtag-submit.8.in +++ b/src/certmonger-dogtag-submit.8.in @@ -1,4 +1,4 @@ -.TH certmonger 8 "13 Apr 2015" "certmonger Manual" +.TH certmonger 8 "27 Oct 2015" "certmonger Manual" .SH NAME dogtag-submit @@ -108,6 +108,7 @@ Even if an already-issued certificate is available in the \fICERTMONGER_CERTIFICATE\fR environment variable, or a serial number has been provided, don't attempt to renew a certificate using its serial number. Instead, attempt to obtain a new certificate using the signing request. +The default behavior is to request a renewal if possible. .TP \fB-R\fR Negates the effect of the \fB-N\fR flag. -- 2.17.2