The Certificates section is located at the settings certificates level.
To import certificates, use the following command:
Admin@nodename# import settings certificates
Parameters:
Parameter |
Description |
---|---|
name |
Certificate name that will be listed. |
description |
Certificate description. |
certificate-data |
Certificate in PEM format. |
certificate-chain |
Certificate's chain in PEM format. |
private-key |
Private key in PEM format. |
passphrase |
Passphrase for the private key or PKCS12 container (optional value). |
user |
Local user to which the user certificate will be assigned. |
ldap-user |
LDAP connector user to which the user certificate will be assigned.
|
role |
Certificate type:
|
To export certificates, the entire certificate's chain or CSR, use the following command:
Admin@nodename# export settings certificates <certificate-name> Admin@nodename# export settings certificates <certificate-name> with-chain on
To create a certificate and CSR, use the following command:
Admin@nodename# create settings certificates type <certificate | csr>
Provide the following parameters:
Parameter |
Description |
---|---|
name |
Certificate name. |
description |
Certificate description. |
country |
Country where the certificate is being issued. |
state |
Region/state where the certificate is being issued. |
locality |
Locality name where the certificate is being issued. |
organization |
Organization name for which the certificate is being issued. |
common-name |
Certificate name. To ensure compatibility with the majority of browsers, we recommend using only Latin characters. |
|
Company email. |
To manage a certificate, use the following command:
Admin@nodename# set settings certificates <certificate-name>
Available parameters:
Parameter |
Description |
---|---|
name |
Certificate name. |
description |
Certificate description. |
role |
Certificate type:
|
user |
Local user to which the user certificate will be assigned. |
ldap-user |
LDAP connector user to which the user certificate will be assigned.
|
certificate-data |
Certificate in PEM format. |
certificate-chain |
Certificate's chain in PEM format. |
To delete a certificate, use the following command:
Admin@nodename# delete settings certificates <certificate-name>
To view information about all or individual certificates, use the following command:
Admin@nodename# show settings certificates Admin@nodename# show settings certificates <certificate-name>
To delete a certificate from the cache, use the following command:
Admin@nodename# delete settings certificates-cache <common-name>