Skip to main content
Version: v1.1

aos-keys

Aos CLI Tool aos-keys is designed to manage users' certificates and private keys.

The tool can:

  • generate user's private keys and store them locally
  • request a certificate and install it into web browsers
  • install current Aos root certificates to system storages/vaults and into web browsers.

-V, --version

Shows installed version.

~/.aos/venv/Scripts/python -m aos_keys -V

-h, --help

Shows general help or help for a selected command.

~/.aos/venv/Scripts/python -m aos_keys -h
~/.aos/venv/Scripts/python -m aos_keys install-cert -h

install-cert

Installs user's certificate and private key pair into browser

install-cert [-h] [-o CERT_FILE_NAME]  [--oem | --sp | --fleet ]
OptionsRequiredDescriptionDefault
-oTBDTBD
--oem, --sp, --fleetTBDUser's role

install-root

Installs Aos root certificate.

~/.aos/venv/Scripts/python -m aos_keys install-root

new-user

Generates AosCloud user private key, Certificate Sign Request and issues user's certificate using AosCloud CA.

new-user [-h] [-o OUTPUT_DIR] [-d REGISTER_DOMAIN] [-t TOKEN] [-oem] [-s] [-f] [-a] [-e] [--skip-browser-install]
OptionsRequiredDescriptionDefault
-d, --domain+Base URL of target AosCloud instance that issues user certificate
-t, --token+Token tied to the user issued by AosCloud
--oem, --sp, --fleet+User's role
-e, --ecGenerate private key with Elliptic Curvestrue
--skip-browser-installSkips installing certificate into browsersfalse
-o, --output-dirConfigures output directory for private keys and certificate~/.aos/security

Example:

~/.aos/venv/Scripts/python -m aos_keys new-user -d api.aoscloud.io -t [USER_TOKEN_HERE] --oem