Differences
This shows you the differences between two versions of the page.
|
cfg:key [2012/04/24 14:10] mcb30 created |
— (current) | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== Client private key ====== | ||
| - | |||
| - | ===== Name ===== | ||
| - | |||
| - | key | ||
| - | |||
| - | ===== Details ===== | ||
| - | |||
| - | ^ Type | [[:cfgtype:hex|Byte sequence]] | | ||
| - | ^ DHCP option number | 175.92 | | ||
| - | ^ ISC dhcpd syntax | option ipxe.key | | ||
| - | |||
| - | ===== Examples ===== | ||
| - | |||
| - | === Convert a private key file to hex dump format === | ||
| - | |||
| - | openssl rsa -in client.key -outform DER | \ | ||
| - | perl -0777 -ne 'print join ( ":", map { sprintf "%02x", $_ } unpack "C*" )."\n"' | ||
| - | |||
| - | === Configure the client private key via VMware GuestInfo === | ||
| - | |||
| - | guestinfo.ipxe.key = "30:82:02:5d:02:01:00:02:81:81:00:d5:92:af:72:83:04:a0: ... :6b:c4:ee" | ||
| - | |||
| - | ===== Description ===== | ||
| - | |||
| - | Specifies the client private key used to authenticate iPXE to TLS servers. | ||
| - | |||
| - | ===== See also ===== | ||
| - | |||
| - | * ''[[:cfg:cert]]'' | ||
| - | * iPXE [[:crypto|cryptography]] guide | ||
| - | * [[:cfg|List of all iPXE settings]] | ||
| - | |||
| - | ===== Notes ===== | ||
| - | |||
| - | Client private keys are usually too large to be transmitted via DHCP. Transmitting a private key via a plaintext protocol such as DHCP would be a bad idea anyway. | ||
