salt-key¶
Synopsis¶
salt-key [ options ]
Description¶
Salt-key executes simple management of Salt server public keys used for authentication.
Options¶
- -h, --help¶
Print a usage message briefly summarizing these command-line options.
- -l, --list¶
List the unaccepted minion public keys.
- -L, --list-all¶
List all public keys on this Salt master: accepted, pending, and rejected.
- -a ACCEPT, --accept=ACCEPT¶
Accept the named minion public key for command execution.
- -A, --accept-all¶
Accepts all pending public keys.
- -r REJECT, --reject=REJECT¶
Reject the named minion public key.
- -R, --reject-all¶
Rejects all pending public keys.
- -d DELETE, --delete=DELETE¶
Delete the named minion key or minion keys matching a glob for command execution.
- -D, --delete-all¶
Delete all keys
- -c CONFIG, --config=CONFIG¶
The master configuration file needs to be read to determine where the Salt keys are stored via the pki_dir configuration value; default=/etc/salt/master
- -p PRINT, --print=PRINT¶
Print the specified public key
- -P, --print-all¶
Print all public keys
- -q, --quiet¶
Supress output
- -y, --yes¶
Answer 'Yes' to all questions presented, defaults to False
- --key-logfile=KEY_LOGFILE¶
Send all output to a file. Default is /var/log/salt/key
- --gen-keys=GEN_KEYS¶
Set a name to generate a keypair for use with salt
- --gen-keys-dir=GEN_KEYS_DIR¶
Set the directory to save the generated keypair. Only works with 'gen_keys_dir' option; default is the current directory.
- --keysize=KEYSIZE¶
Set the keysize for the generated key, only works with the '--gen-keys' option, the key size must be 2048 or higher, otherwise it will be rounded up to 2048. The default is 2048.
