596Chapter 11 Managing certificates

Figure 171 shows sample output for the /cfg/cert #/export command. For more information about the Certificate menu commands, see “Managing and viewing certificates and keys using the CLI” on page 577.

Figure 171 Exporting a certificate and private key

>> Certificate 1# export

Select protocol (tftp/ftp/scp/sftp) [tftp]: ftp

Enter hostname or IP address of server: ftp.example.com

Select the desired export format, enter a pass phrase and specify the name of the output file.

Enter export format (pem/der/net/pkcs12): pkcs12

Enter export pass phrase: <passphrase>

Reconfirm export pass phrase: <passphrase once again> Enter name of combined key and certificate file on remote host: cert.pfx

FTP User (anonymous): Password:

sent 2392 bytes

Generating a test certificate using the CLI

You can generate a self-signed certificate and private key for testing purposes.

The certificate is generated immediately after you have provided all the required information. However, the test certificate and key are not activated until you apply the changes.

To generate a test certificate, perform the following steps:

1Access the Certificate menu by using the /cfg/cert <cert id> command, where <cert id> is an unused certificate number.

2Generate the test certificate. Enter the following command:

/cfg/cert #/test

320818-A

Page 596
Image 596
Nortel Networks 4050 manual Generating a test certificate using the CLI, Cfg/cert #/test