summaryrefslogtreecommitdiff
path: root/doc/guix.texi
diff options
context:
space:
mode:
authorJakob L. Kreuze <zerodaysfordays@sdf.lonestar.org>2019-07-29 18:36:01 -0400
committerChristopher Lemmer Webber <cwebber@dustycloud.org>2019-08-06 15:16:25 -0400
commit5bc751925d19c8b84ef12873bebba78ee61e605e (patch)
treedb4375bf1dfa47d2f8a1ef6caae60d2d04fc6c12 /doc/guix.texi
parentec405a4b01145e601294e2d878c36ea585dce795 (diff)
doc: Add note about signing keys.
* doc/guix.texi (Invoking guix deploy): Add note explaining that deployment targets must authorize the coordinator machine's signing key.
Diffstat (limited to 'doc/guix.texi')
-rw-r--r--doc/guix.texi16
1 files changed, 16 insertions, 0 deletions
diff --git a/doc/guix.texi b/doc/guix.texi
index cb60d5c7b7..5d274e02fe 100644
--- a/doc/guix.texi
+++ b/doc/guix.texi
@@ -25530,6 +25530,22 @@ complex deployment may involve, for example, starting virtual machines through
a Virtual Private Server (VPS) provider. In such a case, a different
@var{environment} type would be used.
+Do note that you first need to generate a key pair on the coordinator machine
+to allow the daemon to export signed archives of files from the store
+(@pxref{Invoking guix archive}).
+
+@example
+# guix archive --generate-key
+@end example
+
+@noindent
+Each target machine must authorize the key of the master machine so that it
+accepts store items it receives from the coordinator:
+
+@example
+# guix archive --authorize < coordinator-public-key.txt
+@end example
+
@deftp {Data Type} machine
This is the data type representing a single machine in a heterogeneous Guix
deployment.