Chapter 13. CMCEnroll (Performing CMC Enrollments)

The CMC Enrollment utility, CMCEnroll, is used to sign a certificate request with an agent's certificate. This can be used in conjunction with the CA end-entity CMC Enrollment form to sign and enroll certificates for users.

13.1. Syntax

This utility has the following syntax:
CMCEnroll -d directory_containing_agent_cert -n certificate_nickname -r certificate_request_file -p certificate_DB_passwd [-c comment]
Option Description
d The directory containing the cert8.db, key3.db, and secmod.db files associated with the agent certificate. This is usually the agent's personal directory, such as their browser certificate database in the home directory.
n The nickname of the agent certificate that is used to sign the request.
r The filename of the certificate request.
p The password to the NSS certificate database which contains the agent certificate, given in -d.

Note

Surround values that include spaces with quotation marks.