HP 6125G HP 6125G & 6125G/XG Blade Switches Security Command Reference - Page 183
ca identifier, certificate request entity
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 183 highlights
system-view [Sysname] pki certificate attribute-group mygroup [Sysname-pki-cert-attribute-group-mygroup] attribute 1 subject-name dn ctn abc # Create a certificate attribute rule, specifying that the FQDN in the issuer name cannot be the string of abc. [Sysname-pki-cert-attribute-group-mygroup] attribute 2 issuer-name fqdn nequ abc # Create a certificate attribute rule, specifying that the IP address in the alternative subject name cannot be 10.0.0.1. [Sysname-pki-cert-attribute-group-mygroup] attribute 3 alt-subject-name ip nequ 10.0.0.1 ca identifier Syntax ca identifier name View undo ca identifier PKI domain view Default level 2: System level Parameters name: Name of the trusted CA, a case-insensitive string of 1 to 63 characters. Description Use ca identifier to specify the trusted CA and bind the switch with the CA. Use undo ca identifier to remove the configuration. By default, no trusted CA is specified for a PKI domain. Certificate request, retrieval, revocation, and query all depend on the trusted CA. Examples # Specify the trusted CA as new-ca. system-view [Sysname] pki domain 1 [Sysname-pki-domain-1] ca identifier new-ca certificate request entity Syntax certificate request entity entity-name View undo certificate request entity PKI domain view Default level 2: System level 174