Scroll to navigation



openssl-srp - maintain SRP password file


openssl srp [-help] [-verbose] [-add] [-modify] [-delete] [-list] [-name section] [-srpvfile file] [-gn identifier] [-userinfo text] [-passin arg] [-passout arg] [-engine id] [-rand files] [-writerand file] [-provider name] [-provider-path path] [-propquery propq] [-config configfile] [user ...]


This command is deprecated. It is used to maintain an SRP (secure remote password) file. At most one of the -add, -modify, -delete, and -list options can be specified. These options take zero or more usernames as parameters and perform the appropriate operation on the SRP file. For -list, if no user is given then all users are displayed.

The configuration file to use, and the section within the file, can be specified with the -config and -name flags, respectively.


Display an option summary.
Generate verbose output while processing.
Add a user and SRP verifier.
Modify the SRP verifier of an existing user.
Delete user from verifier file.
List users.
The particular SRP definition to use.
If the config file is not specified, -srpvfile can be used to specify the file to operate on.
Specifies the g and N values, using one of the strengths defined in IETF RFC 5054.
specifies additional information to add when adding or modifying a user.
The password source for the input and output file. For more information about the format of arg see openssl-passphrase-options(1).
See "Engine Options" in openssl(1). This option is deprecated.
See "Random State Options" in openssl(1) for details.
See "Provider Options" in openssl(1), provider(7), and property(7).
See "Configuration Option" in openssl(1).

[-rand files] [-writerand file]


The -engine option was deprecated in OpenSSL 3.0.


Copyright 2017-2021 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the Apache License 2.0 (the "License"). You may not use this file except in compliance with the License. You can obtain a copy in the file LICENSE in the source distribution or at <>.

2024-06-04 3.3.1