virt-pki-validate - Man Page

validate libvirt PKI files are configured correctly

Synopsis

virt-pki-validate [OPTION] [trust|server|client]

Description

This tool validates that the necessary PKI files are configured for a secure libvirt server or client using the TLS encryption protocol. It will report any missing certificate or key files on the host. It should be run as root to ensure it can read all the necessary files

With no arguments it will check the trusted CA config, the server config and the client config. The optional positional argument can be used to restrict the checks to just one of these three sets.

Options

-h,  --help
Display command line help usage then exit.
-V,  --version
Display version information then exit.

Exit Status

Upon successful validation, an exit status of 0 will be set. Upon failure a non-zero status will be set.

Author

Daniel Veillard, Daniel P. Berrangé

Bugs

Please report all bugs you discover.  This should be done via either:

  1. the mailing list

    <https://libvirt.org/contact.html>

  2. the bug tracker

    <https://libvirt.org/bugs.html>

Alternatively, you may report bugs to your software distributor / vendor.

License

virt-pki-validate is distributed under the terms of the GNU GPL v2+. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE

See Also

virsh(1), online PKI setup instructions <https://libvirt.org/remote.html> ,
<https://libvirt.org/>

Referenced By

virt-host-validate(1), virt-pki-query-dn(1).

Virtualization Support