invoke-ntp-keygen.texi - OpenGrok cross reference for /freebsd/contrib/ntp/util/invoke-ntp-keygen.texi

Lines Matching full:trusted
225 but it is possible for a trusted agent (TA) to generate these files
227 The subject name and trusted name default to the hostname
229 It is convenient to designate the owner name and trusted name
232 while the trusted name is used for the identity files.
285 Designate one of them as the trusted host (TH) using
328 Additional information on trusted groups and identity schemes is on the
356 @subsubsection Trusted Hosts and Groups
372 trusted hosts from which all other hosts derive synchronization
374 Trusted hosts have trusted certificates;
377 certificate trails to one or more trusted hosts.
378 A trusted group is the set of all hosts that have, directly or indirectly,
379 a certificate trail ending at a trusted host.
386 On each trusted host as root, change to the keys directory.
393 to generate keys and a trusted certificate.
455 These schemes are based on a TA, one or more trusted hosts
457 Trusted hosts prove identity using values provided by the TA,
459 by a trusted host and certificate trails that end on that host.
460 The name of a trusted host is also the name of its sugroup
461 and also the subject and issuer name on its trusted certificate.
462 The TA is not necessarily a trusted host in this sense, but often is.
467 In general, trusted hosts and nontrusted hosts that operate
473 The PC scheme supports only one trusted host in the group.
474 On trusted host alice run
480 and trusted private certificate file
493 by trusted host alice.
503 and certificates for all group hosts, then for every trusted host in the group,
507 On trusted host alice run
546 and certificates for all group hosts, then for every trusted host
550 On trusted host alice run
581 For illustration assume trish is the TA, alice one of several trusted hosts
800 @item @code{-T} @code{--trusted-cert}
801 Generate a trusted certificate.
802 By default, the program generates a non-trusted certificate.
1033 * ntp-keygen trusted-cert::           trusted-cert option (-T)
1086    -T no  trusted-cert   trusted certificate (TC scheme)
1378 @node ntp-keygen trusted-cert
1379 @subsection trusted-cert option (-T)
1380 @cindex ntp-keygen-trusted-cert
1382 This is the ``trusted certificate (tc scheme)'' option.
1391 Generate a trusted certificate.  By default, the program generates
1392 a non-trusted certificate.