Difference between revisions of "PKI Server Status CLI"

From Dogtag
Jump to: navigation, search
(Created page with "= See Also = * PKI Server CLI")
 
m (Displaying Server Status)
 
(22 intermediate revisions by the same user not shown)
Line 1: Line 1:
 +
= Displaying Server Status =
 +
 +
To display server status:
 +
 +
<pre>
 +
$ pki-server status
 +
  Instance ID: pki-tomcat
 +
  Active: True
 +
  Unsecure Port: 8080
 +
  Secure Port: 8443
 +
  Tomcat Port: 8005
 +
 +
  CA Subsystem:
 +
    Type:                Root CA (Security Domain)
 +
    SD Registration URL: https://localhost:8443
 +
    Enabled:            True
 +
    Unsecure URL:        http://localhost:8080/ca/ee/ca
 +
    Secure Agent URL:    https://localhost:8443/ca/agent/ca
 +
    Secure EE URL:      https://localhost:8443/ca/ee/ca
 +
    Secure Admin URL:    https://localhost:8443/ca/services
 +
    PKI Console Command: pkiconsole https://localhost:8443/ca
 +
 +
  KRA Subsystem:
 +
    Type:                KRA
 +
    SD Registration URL: https://localhost:8443
 +
    Enabled:            True
 +
    Secure Agent URL:    https://localhost:8443/kra/agent/kra
 +
    Secure Admin URL:    https://localhost:8443/kra/services
 +
    PKI Console Command: pkiconsole https://localhost:8443/kra
 +
 +
  OCSP Subsystem:
 +
    Type:                OCSP
 +
    SD Registration URL: https://localhost:8443
 +
    Enabled:            True
 +
    Unsecure URL:        http://localhost:8080/ocsp/ee/ocsp/<ocsp request blob>
 +
    Secure Agent URL:    https://localhost:8443/ocsp/agent/ocsp
 +
    Secure EE URL:      https://localhost:8443/ocsp/ee/ocsp/<ocsp request blob>
 +
    Secure Admin URL:    https://localhost:8443/ocsp/services
 +
    PKI Console Command: pkiconsole https://localhost:8443/ocsp
 +
 +
  TKS Subsystem:
 +
    Type:                TKS
 +
    SD Registration URL: https://localhost:8443
 +
    Enabled:            True
 +
    Secure Agent URL:    https://localhost:8443/tks/agent/tks
 +
    Secure Admin URL:    https://localhost:8443/tks/services
 +
    PKI Console Command: pkiconsole https://localhost:8443/tks
 +
 +
  TPS Subsystem:
 +
    Type:                TPS
 +
    SD Registration URL: https://localhost:8443
 +
    Enabled:            True
 +
    Unsecure URL:        http://localhost:8080/tps
 +
    Unsecure PHONE HOME: http://localhost:8080/tps/phoneHome
 +
    Secure URL:          https://localhost:8443/tps
 +
    Secure PHONE HOME:  https://localhost:8443/tps/phoneHome
 +
</pre>
 +
 +
= Active =
 +
 +
If '''Active''' is True, the server is running and accepting connections at the specified ports.
 +
If it is False, the server is not running.
 +
 +
= Subsystem Type =
 +
 +
Possible values of '''Type''':
 +
 +
* Root CA
 +
* Root CA (Security Domain)
 +
* Subordinate CA
 +
* Subordinate CA (Security Domain)
 +
* CA Clone
 +
* CA Clone (Security Domain)
 +
* KRA
 +
* KRA (Standalone)
 +
* KRA Clone
 +
* OCSP
 +
* OCSP (Standalone)
 +
* OCSP Clone
 +
* TKS
 +
* TKS Clone
 +
* TPS
 +
 +
= Subsystem Security Domain Registration URL =
 +
 +
The '''SD Registration URL''' indicates the security domain to which the subsystem is registered.
 +
 +
= Subsystem Enabled =
 +
 +
If '''Enabled''' is True, the subsystem is running and accepting requests at the specified URLs provided that the server is running too. If it is False, the subsystem is not running regardless whether the server itself is running.
 +
 
= See Also =
 
= See Also =
  
 
* [[PKI Server CLI]]
 
* [[PKI Server CLI]]

Latest revision as of 16:10, 14 June 2019

Displaying Server Status

To display server status:

$ pki-server status
  Instance ID: pki-tomcat
  Active: True
  Unsecure Port: 8080
  Secure Port: 8443
  Tomcat Port: 8005

  CA Subsystem:
    Type:                Root CA (Security Domain)
    SD Registration URL: https://localhost:8443
    Enabled:             True
    Unsecure URL:        http://localhost:8080/ca/ee/ca
    Secure Agent URL:    https://localhost:8443/ca/agent/ca
    Secure EE URL:       https://localhost:8443/ca/ee/ca
    Secure Admin URL:    https://localhost:8443/ca/services
    PKI Console Command: pkiconsole https://localhost:8443/ca

  KRA Subsystem:
    Type:                KRA
    SD Registration URL: https://localhost:8443
    Enabled:             True
    Secure Agent URL:    https://localhost:8443/kra/agent/kra
    Secure Admin URL:    https://localhost:8443/kra/services
    PKI Console Command: pkiconsole https://localhost:8443/kra

  OCSP Subsystem:
    Type:                OCSP
    SD Registration URL: https://localhost:8443
    Enabled:             True
    Unsecure URL:        http://localhost:8080/ocsp/ee/ocsp/<ocsp request blob>
    Secure Agent URL:    https://localhost:8443/ocsp/agent/ocsp
    Secure EE URL:       https://localhost:8443/ocsp/ee/ocsp/<ocsp request blob>
    Secure Admin URL:    https://localhost:8443/ocsp/services
    PKI Console Command: pkiconsole https://localhost:8443/ocsp

  TKS Subsystem:
    Type:                TKS
    SD Registration URL: https://localhost:8443
    Enabled:             True
    Secure Agent URL:    https://localhost:8443/tks/agent/tks
    Secure Admin URL:    https://localhost:8443/tks/services
    PKI Console Command: pkiconsole https://localhost:8443/tks

  TPS Subsystem:
    Type:                TPS
    SD Registration URL: https://localhost:8443
    Enabled:             True
    Unsecure URL:        http://localhost:8080/tps
    Unsecure PHONE HOME: http://localhost:8080/tps/phoneHome
    Secure URL:          https://localhost:8443/tps
    Secure PHONE HOME:   https://localhost:8443/tps/phoneHome

Active

If Active is True, the server is running and accepting connections at the specified ports. If it is False, the server is not running.

Subsystem Type

Possible values of Type:

  • Root CA
  • Root CA (Security Domain)
  • Subordinate CA
  • Subordinate CA (Security Domain)
  • CA Clone
  • CA Clone (Security Domain)
  • KRA
  • KRA (Standalone)
  • KRA Clone
  • OCSP
  • OCSP (Standalone)
  • OCSP Clone
  • TKS
  • TKS Clone
  • TPS

Subsystem Security Domain Registration URL

The SD Registration URL indicates the security domain to which the subsystem is registered.

Subsystem Enabled

If Enabled is True, the subsystem is running and accepting requests at the specified URLs provided that the server is running too. If it is False, the subsystem is not running regardless whether the server itself is running.

See Also