Description of CA configuration options

Configuration option = Default value	Description
[DEFAULT]
ca_file = cacert.pem	(StrOpt) Filename of root CA
ca_path = $state_path/CA	(StrOpt) Where we keep our root CA
cert_manager = nova.cert.manager.CertManager	(StrOpt) Full class name for the Manager for cert
cert_topic = cert	(StrOpt) The topic cert nodes listen on
crl_file = crl.pem	(StrOpt) Filename of root Certificate Revocation List
key_file = private/cakey.pem	(StrOpt) Filename of private key
keys_path = $state_path/keys	(StrOpt) Where we keep our keys
project_cert_subject = /C=US/ST=California/O=OpenStack/OU=NovaDev/CN=project-ca-%.16s-%s	(StrOpt) Subject for certificate for projects, %s for project, timestamp
ssl_ca_file = None	(StrOpt) CA certificate file to use to verify connecting clients
ssl_cert_file = None	(StrOpt) SSL certificate of API server
ssl_key_file = None	(StrOpt) SSL private key of API server
use_project_ca = False	(BoolOpt) Should we use a CA for each project?
user_cert_subject = /C=US/ST=California/O=OpenStack/OU=NovaDev/CN=%.16s-%.16s-%s	(StrOpt) Subject for certificate for users, %s for project, user, timestamp
[ssl]
ca_file = None	(StrOpt) CA certificate file to use to verify connecting clients.
cert_file = None	(StrOpt) Certificate file to use when starting the server securely.
key_file = None	(StrOpt) Private key file to use when starting the server securely.