Security setup
This section describes the signer commands. You need these commands to create security tokens and to configure PKI objects for TLS-enabled transport.
To be able to work with the signer commands, the nevisKeybox component is required.
The following table describes the relevant signer commands.
| Command | Description |
|---|---|
nevisauth signer | This command displays the installed identity signer certificate. |
nevisauth signer create | This command calls the nevisKeybox administration command to create a (self-signed) certificate as well as a private key required for the signing of identities. nevisProxy uses the certificate to detect identity manipulations if nevisAuth is used for authentication. |
nevisauth signer export | This command exports the installed identity signer certificate (the public part only). |
nevisauth signer delete | This command removes the installed identity signer certificate. |
nevisauth encSecret | This command is used to protect passphrases and other secrets that need to be included in the configuration (e.g., to log in to a database or a directory). |