.\" DO NOT MODIFY THIS FILE! It was generated by help2man 1.48.1. .TH STEP-PKCS11-INIT "1" "August 2021" "step-pkcs11-init 0.15.15" "User Commands" .SH NAME step-pkcs11-init \- initialize PKI for step-ca .SH DESCRIPTION The step\-pkcs11\-init command initializes a public key infrastructure (PKI) to be used by step\-ca. .PP This tool is experimental and in the future it will be integrated in step cli. .SH OPTIONS .HP \fB\-crt\-cert\fR string .IP PKCS #11 URI with object id and label to store the intermediate certificate. (default "pkcs11:id=7331;object=intermediate\-cert") .HP \fB\-crt\-key\fR string .IP PKCS #11 URI with object id and label to store the intermediate certificate. (default "pkcs11:id=7331;object=intermediate\-key") .HP \fB\-force\fR .IP Force the delete of previous keys. .HP \fB\-key\fR string .IP Path to the root key to use. .HP \fB\-kms\fR string .IP PKCS #11 URI with the module\-path and token to connect to the module. (default "pkcs11:module\-path=/usr/lib/x86_64\-linux\-gnu/pkcs11/yubihsm_pkcs11.so;token=YubiHSM") .HP \fB\-no\-certs\fR .IP Do not store certificates in the module. .HP \fB\-pin\fR string .IP PKCS #11 PIN .HP \fB\-root\fR string .IP Path to the root certificate to use. .HP \fB\-root\-cert\fR string .IP PKCS #11 URI with object id and label to store the root certificate. (default "pkcs11:id=7330;object=root\-cert") .HP \fB\-root\-key\fR string .IP PKCS #11 URI with object id and label to store the root key. (default "pkcs11:id=7330;object=root\-key") .HP \fB\-root\-only\fR .IP Store only only the root certificate and sign and intermediate. .HP \fB\-ssh\fR .IP Enable the creation of ssh keys. .HP \fB\-ssh\-host\-key\fR string .IP PKCS #11 URI with object id and label to store the key used to sign SSH host certificates. (default "pkcs11:id=7332;object=ssh\-host\-key") .HP \fB\-ssh\-user\-key\fR string .IP PKCS #11 URI with object id and label to store the key used to sign SSH user certificates. (default "pkcs11:id=7333;object=ssh\-user\-key") .SH COPYRIGHT (c) 2018\-2020 Smallstep Labs, Inc. .SH AUTHOR This manpage was written by Peymaneh Nejad for the Debian distribution and can be used for any other usage of the program.