Example: Importing Certificate Groups - Cisco CSS11501 - 100Mbps Ethernet Load Balancing Device Configuration Manual
11000 series secure content accelerator
Hide thumbs
Also See for CSS11501 - 100Mbps Ethernet Load Balancing Device:
- Hardware installation manual (184 pages) ,
- Datasheet (10 pages) ,
- Product support bulletin (3 pages)
Table of Contents
Advertisement
Configuring Certificate Groups
Example: Importing Certificate Groups
Note
Cisco 11000 Series Secure Content Accelerator Configuration Guide
4-20
7.
Save the configuration to flash memory. If it is not saved, the configuration is
lost during a power cycle or when the reload command is used.
SCA# write flash
SCA#
PKCS#7 certificate groups can be imported directly into the device. This example
demonstrates how to import a PEM-encoded PKCS#7 file into the Cisco Secure
Content Accelerator.
Initiate a management session as described previously.
1.
2.
Enter Privileged and Configuration modes.
3.
Enter SSL Configuration mode.
(config[myDevice])# ssl
(config-ssl[myDevice])#
Specify the PKCS#7 file to import, indicating the appropriate encoding (in
4.
this example, PEM). In this example, the name of the certificate group to
create is myCertGroup. The certificate prefix is impt. (The certificate prefix
is optional. This command must be entered on one line.)
(config-ssl[myDevice])# import pkcs7 myCertGroup pem impt
https://www.mycertgroups.com/certgroups/mygroup.pem
The file is imported, and certificates and a certificate group are generated.
5.
The certificates are named incrementally from impt_1 to impt_N, where N is
the number of certificates in the PKCS#7 file. The certificate with the highest
incremented number is the server certificate.
See the entry in Appendix C for additional command options.
Chapter 4
Using the Configuration Manager
78-13124-05
Advertisement
Table of Contents
Troubleshooting
