fioctl keys ca
Manage Public Key Infrastructure for your device gateway
Synopsis
Every factory can have its own dedicated device gateway. This allows customers to own the PKI infrastructure of their factory. This infrastructure is used to manage mutual TLS between your devices and the Foundries.io device gateway.
Options
-h, --help help for ca
Options inherited from parent commands
-c, --config string config file (default is $HOME/.config/fioctl.yaml)
-f, --factory string Factory to list targets for
-t, --token string API token from https://app.foundries.io/settings/tokens/
-v, --verbose Print verbose logging
SEE ALSO
- fioctl keys - Manage keys in use by your factory fleet
- fioctl keys ca add-device-ca - Add device CA to the list of CAs allowed to issue device client certificates
- fioctl keys ca create - Create PKI infrastructure to manage mutual TLS for the device gateway
- fioctl keys ca disable-device-ca - Disable device CA, so that new devices with client certificates it issued can no longer be registered
- fioctl keys ca revoke-device-ca - Revoke device CA, so that devices with client certificates it issued can no longer connect to your Factory
- fioctl keys ca rotate-tls - Rotate the TLS certificate used by Device Gateway and OSTree Server
- fioctl keys ca show - Show what certificates are known to the factory
- fioctl keys ca update - Update the list of CAs that can create client certificates for devices