Cisco Systems SR-207 sam delete certificate, Syntax Description Defaults Command Modes, SR-210

Usage Guidelines

To use this command, you must be in a user group associated with a task group that includes the proper

task IDs. For detailed information about user groups and task IDs, see the Configuring AAA Services on

Cisco IOS XR Software module of the Cisco IOS XR System Security Configuration Guide.

For security reasons, the sam delete certificate command can be issued only from the console port of

the networking device; the command cannot be issued from a Telnet connection to any other interface

on the networking device.

Use the show sam certificate summary command to display certificates by their index numbers.

Because the certificate authority (CA) certificate must not be unknowingly deleted, the Software

Authentication Manager (SAM) prompts the user for confirmation when an attempt is made to delete the

CA certificate.

If a certificate stored on the system is no longer valid (for example, if the certificate has expired), you

can use the sam delete certificate command to remove the certificate from the list.

Examples

The following example shows how to delete the certificate identified by the index number 2 from the

memory location:

RP/0/RP0/CPU0:router# sam delete certificate mem 2

SAM: Successful deleting certificate index 2