MyNixOS website logo
MyNixOS website logo
Flakes
Categories
Options
Packages
option-set

services.cfssl

Showing entries 1-23 out of 23.
services.cfssl.addressNixOS option
Address to bind
services.cfssl.caNixOS option
CA used to sign the new certificate -- accepts '[file:]fname' or 'env:varname'
services.cfssl.caBundleNixOS option
Path to root certificate store
services.cfssl.caKeyNixOS option
CA private key -- accepts '[file:]fname' or 'env:varname'
services.cfssl.configFileNixOS option
Path to configuration file
services.cfssl.dataDirNixOS option
The work directory for CFSSL.If left as the default value this directory will automatically be cre…
services.cfssl.dbConfigNixOS option
Certificate db configuration file
services.cfssl.enableNixOS option
Whether to enable the CFSSL CA api-server
services.cfssl.intBundleNixOS option
Path to intermediate certificate store
services.cfssl.intDirNixOS option
Intermediates directory
services.cfssl.logLevelNixOS option
Log level (0 = DEBUG, 5 = FATAL)
services.cfssl.metadataNixOS option
Metadata file for root certificate presence
services.cfssl.mutualTlsCaNixOS option
Mutual TLS - require clients be signed by this CA
services.cfssl.mutualTlsClientCertNixOS option
Mutual TLS - client certificate to call remote instance requiring client certs
services.cfssl.mutualTlsClientKeyNixOS option
Mutual TLS - client key to call remote instance requiring client certs
services.cfssl.mutualTlsCnNixOS option
Mutual TLS - regex for whitelist of allowed client CNs
services.cfssl.portNixOS option
Port to bind
services.cfssl.remoteNixOS option
Remote CFSSL server
services.cfssl.responderNixOS option
Certificate for OCSP responder
services.cfssl.responderKeyNixOS option
Private key for OCSP responder certificate
services.cfssl.tlsCertNixOS option
Other endpoint's CA to set up TLS protocol
services.cfssl.tlsKeyNixOS option
Other endpoint's CA private key
services.cfssl.tlsRemoteCaNixOS option
CAs to trust for remote TLS requests