3 .\" transcript compatibility for postscript use.
5 .\" synopsis: .P! <file.ps>
14 .fl \" force out current output buffer
15 \!!save /psv exch def currentpoint translate 0 0 moveto
18 .sy sed \-e 's/^/!/' \\$1\" bring in postscript file
22 .ie
\a\\*(f1
\a\a .ds f1 \\n(.f
23 .el .ie
\a\\*(f2
\a\a .ds f2 \\n(.f
24 .el .ie
\a\\*(f3
\a\a .ds f3 \\n(.f
25 .el .ie
\a\\*(f4
\a\a .ds f4 \\n(.f
26 .el .tm ? font overflow
34 .el .ie !
\a\\*(f3
\a\a \{\
38 .el .ie !
\a\\*(f2
\a\a \{\
42 .el .ie !
\a\\*(f1
\a\a \{\
46 .el .tm ? font underflow
53 .ta 8n 16n 24n 32n 40n 48n 56n 64n 72n
54 .TH ASTGENKEY 8 "May 14th, 2005" "Asterisk" "Linux Programmer's Manual"
57 -- generates keys for for Asterisk IAX2 RSA authentication
61 [ -q ] [ -n ] [ \fIkeyname\fP ]
65 This script generates an RSA private and public key pair in PEM format
66 for use by Asterisk. The private key should be kept a secret, as it can
67 be used to fake your system's identity. Thus by default (without the
70 ) the script will create a passphrase-encrypted copy of your secret key:
71 without entering the passphrase you won't be able to use it.
73 However if you want to use such a key with Asterisk, you'll have to start
74 it interactively, because the scripts that start asterisk can't use that
77 The key is identified by a name. If you don't write the name on the
78 command-line you'll be prompted for one. The outputs of the script are:
82 The public key: not secret. Send this to the other side.
87 The private key: secret.
90 Those files should be copied to
91 .I /var/lib/asterisk/keys
93 (The private key: on your system. The public key: on other systems)
95 To see the currently-installed keys from the asterisk CLI, use the command
109 Don't encrypt the private key.
113 The keys are created, using the umask of the user running the command.
114 To create the keys in a secure manner, you should check to ensure that
115 your umask is first set to disallow the private key from being world-
116 readable, such as with the following commands:
122 And then make the key accessible to Asterisk (assuming you run it as
125 chown asterisk /var/lib/asterisk/keys/yourname.*
128 .I /var/lib/asterisk/keys
133 asterisk(8), genrsa(1), rsa(1),
135 http://www.voip-info.org/wiki-Asterisk+iax+rsa+auth
138 This manual page was written by Tzafrir Cohen <tzafrir.cohen@xorcom.com>
139 Permission is granted to copy, distribute and/or modify this document under
140 the terms of the GNU General Public License, Version 2 any
141 later version published by the Free Software Foundation.
143 On Debian systems, the complete text of the GNU General Public
144 License can be found in /usr/share/common-licenses/GPL.