Chapter 21. HttpClient (Sends a Request over HTTP)
The HTTP Client utility,
HttpClient, sends a CMC request (created with the CMC Request utility) or a PKCS #10 request to a CA.
21.1. Syntax
This utility takes a single
.cfg configuration file as a parameter. The syntax is as follows:
HttpClient
/path/to/file.cfg
The
.cfg file has the following parameters:
| Parameters | Description |
|---|---|
| host | The hostname for the Certificate System server. Depending on how DNS and the network are configured, this can be a machine name, fully-qualified domain name, or IPv4 or IPv6 address. For example, host=server.example.com. |
| port | Any port number for Certificate System server. For example, port=9443. |
| secure | true for an HTTPS connection, false for an HTTP connection. For example, secure=true. |
| input | The full path and filename for the enrollment request, which must be in binary format. For example, input=cmcReqCRMFBin. |
| output | The full path and filename for the response in binary format. For example, output=cmcResp. |
| dbdir | The full path to the directory where the cert8.db, key3.db, and secmod.db databases are located. This parameter is ignored if secure=false. For example, dbdir=/usr/bin. |
| clientmode | true for client authentication, false for no client authentication. This parameter is ignored if secure=false. For example, clientmode=true. |
| password | The password for the cert8.db database. This parameter is ignored if secure=false and clientauth=false. For example, password=secret. |
| nickname | The nickname of the client certificate. This parameter is ignored if clientmode=false. For example, nickname=CS Agent-102504a's 102504a ID. |
| servlet | The URI of the servlet that processes full CMC requests. The default value is /ca/profileSubmitCMCFull. For example, servlet=/ca/profileSubmitCMCFull. |
