D-Link DES-3010PA-TAA CLI Guide - Page 324
crypto certificate generate, crypto certificate, generate [key-generate, passphrase, duration
UPC - 790069296567
View all D-Link DES-3010PA-TAA manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 324 highlights
D-Link DES-3010FA/GA/PA CLI Reference Guide crypto certificate generate The crypto certificate generate Global Configuration mode command generates self signed certificate for HTTPS . Syntax crypto certificate number generate [key-generate [length]] [passphrase string] [cn common- name] [ou organization-unit] [or organization] [loc location] [st state] [cu country] [duration days] Parameters • number - Specifies the certificate number. If unspecified, defaults to 1. (Range: 1-2) • key-generate - Regenerate SSL RSA key. • length - Specifies the length of the SSL's RSA key. If unspecified, length defaults to 1024. (Range: 512 - 2048) • passphrase string - Passphrase that is used for exporting the certificate in PKCS12 file format. If unspecified the certificate is not exportable. (Range: 8-96) • cn common- name - Specifies the fully qualified URL or IP address of the device. If unspecified, defaults to the lowest IP address of the device (when the certificate is generated). (Range: 1-64) • ou organization-unit - Specifies the organization-unit or department name. (Range: 1-64) • or organization - Specifies the organization name. (Range: 1-64) • loc location - Specifies the location or the city name. (Range: 1-64) • st state - Specifies the state or province name. • cu country - Specifies the country name. (Range: 2) • duration days - Specifies number of days a certification would be valid. If unspecified defaults to 365 days. (Range: 30-3650) Default Configuration The Certificate and the SSL's RSA key pairs do not exist. Command Mode Global Configuration mode User Guidelines Use this command to generate self-signed certificate for your device. This command is not saved in the router configuration; however, the certificate and keys generated by this command are saved in the private configuration (which is never displayed to the user or backed up to another device). When you export an RSA key pair to a PKCS#12 file, the RSA key pair is as secure as the passphrase, keep the passphrase secure. If the RSA keys doesn't exist, the parameter key-generate must be used. Page 323