Use --password-file
for CA/SSH key password in ca token --offline
#539
Labels
--password-file
for CA/SSH key password in ca token --offline
#539
What would you like to be added
The
--password-file
flag is an alias for--provisioner-password-file
in theca token
command. Whenca token
is invoked with the--offline
flag, that means the intermediate CA key password must be provided interactively.I request/suggest that the
--password-file
flag should not be an alias for--provisioner-password-file
, but should allow the intermediate CA key password to be passed in soca token --offline
can be used non-interactively.Why this is needed
The
ca token --offline
command cannot be scripted as currently implemented.The desired functionality would allow the following command to be performed without user input.
Removing
--password-file <(echo -n 'ca/ssh password')
creates the token, once you enter the intermediate CA/SSH key password three times.This is an instance of the general feature request in #502, but I haven't found any commands that it's not possible to script other than
ca token --offline
.The text was updated successfully, but these errors were encountered: