P-662H/HW-D Series User’s Guide

 

Table 166 Certificates Commands (continued)

 

 

 

 

 

 

 

COMMAND

DESCRIPTION

 

 

 

 

 

 

 

 

 

replace_fact

 

Create a certificate using your device MAC

 

 

ory

 

address that will be specific to this device. The

 

 

 

 

factory default certificate is a common default

 

 

 

 

certificate for all ZyWALL models.

 

ca_trusted

 

 

 

 

 

import

<name>

Import the PEM-encoded certificate from stdin.

 

 

 

 

<name> specifies the name as which the

 

 

 

 

imported CA certificate is to be saved.

 

 

export

<name>

Export the PEM-encoded certificate to stdout for

 

 

 

 

user to copy and paste. <name> specifies the

 

 

 

 

name of the certificate to be exported.

 

 

view

<name>

View the information of the specified trusted CA

 

 

 

 

certificate. <name> specifies the name of the

 

 

 

 

certificate to be viewed.

 

 

verify

<name>

Verify the certification path of the specified

 

 

 

[timeout]

trusted CA certificate. <name> specifies the

 

 

 

 

name of the certificate to be verified. [timeout]

 

 

 

 

specifies the timeout value in seconds

 

 

 

 

(optional). The default timeout value is 20

 

 

 

 

seconds.

 

 

delete

<name>

Delete the specified trusted CA certificate.

 

 

 

 

<name> specifies the name of the certificate to

 

 

 

 

be deleted.

 

 

list

 

List all trusted CA certificate names and basic

 

 

 

 

information.

 

 

rename

<old name>

Rename the specified trusted CA certificate.

 

 

 

<new name>

<old name> specifies the name of the certificate

 

 

 

 

to be renamed. <new name> specifies the new

 

 

 

 

name as which the certificate is to be saved.

 

 

crl_issuer

<name>

Specify whether or not the specified CA issues

 

 

 

[onoff]

CRL. <name> specifies the name of the CA

 

 

 

 

certificate. [onoff] specifies whether or not the

 

 

 

 

CA issues CRL. If [onoff] is not specified, the

 

 

 

 

current crl_issuer status of the CA.

 

remote_trusted

 

 

 

 

import

<name>

Import the PEM-encoded certificate from stdin.

 

 

 

 

<name> specifies the name as which the

 

 

 

 

imported remote host certificate is to be saved.

 

 

export

<name>

Export the PEM-encoded certificate to stdout for

 

 

 

 

user to copy and paste. <name> specifies the

 

 

 

 

name of the certificate to be exported.

 

 

view

<name>

View the information of the specified trusted

 

 

 

 

remote host certificate. <name> specifies the

 

 

 

 

name of the certificate to be viewed.

 

 

verify

<name>

Verify the certification path of the specified

 

 

 

[timeout]

trusted remote host certificate. <name>

 

 

 

 

specifies the name of the certificate to be

 

 

 

 

verified. [timeout] specifies the timeout value in

 

 

 

 

seconds (optional). The default timeout value is

 

 

 

 

20 seconds.

Appendix I Certificates Commands

423