fioctl keys ca sign

Sign a certificate signing request with the Factory root CA

Synopsis

Sign the given certificate signing request (CSR) using the factory_ca.key from the specified PKI directory. The signed certificate is printed to stdout.

The certificate type is determined automatically from the CSR’s requested extensions. If the CSR contains a Basic Constraints extension with CA:TRUE, a CA certificate is produced. Otherwise, a TLS server certificate is produced.

fioctl keys ca sign <CSR> [flags]

Options

-h, --help             help for sign
    --pki-dir string   Path to the PKI directory containing factory_ca.key and factory_ca.pem

Options inherited from parent commands

-c, --config string    config file (default is $HOME/.config/fioctl.yaml)
-f, --factory string   Factory to list Targets for
-t, --token string     API token from https://app.foundries.io/settings/tokens/
-v, --verbose          Print verbose logging

SEE ALSO

• fioctl keys ca - Manage Public Key Infrastructure for your device gateway