Panel | ||||
---|---|---|---|---|
In this section:
|
The Public Key Infrastructure (PKI) provides a common set of infrastructure features supporting public key and certificate-based authentication based on the RSA public/private key pairs and X.509 digital certificates.
Multiexcerpt | ||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ||||||||||||||||||||||||||||||||
Certificate TypesLocal-Internal CertificatesIn previous
The Certificate file format: PKCS12 Local CertificatesLocal certificates are credentials belonging to the local system itself, which it presents to peers in order to prove its identity. You must download local certificate files to the system before installing the certificates. Certificate file format: PEM Remote CertificatesRemote certificates are credentials belonging to Certificate Authorities (CA). The copies of these certificates are installed in the
The Certificate Authority (CA) certificates and trusted remote certificates contain public key certificates; they do not contain the private keys. The CA certificates and remote certificates are Distinguished Encoding Rules (DER) format files; a method for encoding a data object (such as an X.509 certificate) which uses a digital signature to bind together a public key with an identity. Certificate file format: DER |
Include Page | ||||
---|---|---|---|---|
|
Code Block | ||
---|---|---|
| ||
% set system security pki certificate <certificate name> fileName <1-255 characters> passPhrase <pass phrase> state <disabled | enabled> type <local | local-internal | remote> % show system security pki % delete system security pki |
Multiexcerpt include | ||||||
---|---|---|---|---|---|---|
|
Caption | ||||
---|---|---|---|---|
| ||||
Parameter | Description | ||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
| ||||||||||||||
| <
| ||||||||||||||
| Specifies the pass-phrase to decrypt RSA private key in PKCS12 file. Note: The | ||||||||||||||
| Administration state of this certificate. Options are:
| ||||||||||||||
| Specifies the certificate type – CA (remote) certificate or local certificate. Options are:
|
Multiexcerpt include | ||||||
---|---|---|---|---|---|---|
|
To display security management configuration:
Code Block | ||
---|---|---|
| ||
% show system security pki certificate certificate testSBCCert { state enabled; fileName sonuscert.pem type local-internal; } certificate defaultSBCCert { state enabled; fileName sonuscert.p12; passPhrase $3$KFfiuJ0Lifk=; type local; } |
Pagebreak |
---|