Chapter 32 Certificates
Table 117 Certificates Commands Input Values (continued)
LABEL | DESCRIPTION |
organizational_unit | Identify the organizational unit or department to which the certificate |
| owner belongs. You can use up to 31 characters. You can use |
| alphanumeric characters, the hyphen and the underscore. |
|
|
organization | Identify the company or group to which the certificate owner belongs. You |
| can use up to 31 characters. You can use alphanumeric characters, the |
| hyphen and the underscore. |
|
|
country | Identify the nation where the certificate owner is located. You can use up |
| to 31 characters. You can use alphanumeric characters, the hyphen and |
| the underscore. |
|
|
key_length | Type a number to determine how many bits the key should use (512 to |
| 2048). The longer the key, the more secure it is. A longer key also uses |
| more PKI storage space. |
|
|
password | When you have the NXC enroll for a certificate immediately online, the |
| certification authority may want you to include a key (password) to |
| identify your certification request. Use up to 31 of the following |
| characters. |
|
|
ca_name | When you have the NXC enroll for a certificate immediately online, you |
| must have the certification authority’s certificate already imported as a |
| trusted certificate. Specify the name of the certification authority’s |
| certificate. It can be up to 31 alphanumeric and ;‘~!@#$%^&()_+[]{}’,.=- |
| characters. |
|
|
url | When you have the NXC enroll for a certificate immediately online, enter |
| the IP address (or URL) of the certification authority server. You can use |
| up to 511 of the following characters. |
|
|
32.4 Certificates Commands Summary
The following table lists the commands that you can use to display and manage the NXC’s summary list of certificates and certification requests. You can also create certificates or certification requests. Use the configure terminal command to enter the configuration mode to be able to use these commands.
Table 118 ca Commands Summary
COMMAND | DESCRIPTION | |
ca enroll cmp name certificate_name | Enrolls a certificate with a CA using Certificate | |
{ip cn cn_addressfqdn cn cn_domain_namemail | Management Protocol (CMP). The certification | |
cn cn_email} [ou organizational_unit] [o | authority may want you to include a reference | |
organization] [c country] | number and key (password) to identify your | |
certification request. | ||
certificate_name] | ||
| ||
key_length num <0..99999999> password password |
| |
ca ca_name url url; |
| |
ca enroll scep name certificate_name | Enrolls a certificate with a CA using Simple | |
{ip cn cn_addressfqdn cn cn_domain_namemail | Certificate Enrollment Protocol (SCEP). The | |
cn cn_email} [ou organizational_unit] [o | certification authority may want you to include a | |
organization] [c country] | key (password) to identify your certification | |
request. | ||
certificate_name] | ||
| ||
key_length password password ca ca_name url |
| |
url |
|
204 |
| |
NXC CLI Reference Guide |
| |
|
|
|