Reference Guide
For CMC only:
racadm sslcertupload -f <filename> -t <type>
Input
• -t — Specifies the type of certificate to upload. The type of certificate must be:
– 1 — server certificate (CMC only)
– 2 — Active directory (CMC only)
– 3 — Public Key Cryptography Standards (PKCS) format (iDRAC only)
– 5 — Kerberos Keytab (CMC only)
– 6 — Server certificate and key (CMC only)
• -f — Specifies the source filename in the local file system of the certificate uploaded.
• -e — Allows for upload of multiple certificate format types.
– –1=Base64
– –2=PKCS12
The current release does not support this option.
• -p — Pass phrase for decrypting the PKCS12 file uploaded.
• -k — Filename of the private key file while using type 6. The private key is generated when the
CSR is generated. If the CSR is generated on another server, then it is necessary to upload the
private key with the certificate.
Output The sslcertupload command returns 0 when successful and returns nonzero number when
unsuccessful.
Example
• Uploading a server certificate.
racadm sslcertupload -t 1 -f c:\cert\cert.txt
• Uploading a PKCS file without any passphrase.
racadm sslcertupload –t 3 –f <filename>
• Uploading a PKCS file with a passphrase.
racadm sslcertupload –t 3 –f <filename> –p <passphrase>
sslcertview
Description Displays the SSL server or CA certificate that exists on iDRAC.
To run this subcommand, you must have the iDRAC Login Privilege.
Synopsis
racadm sslcertview -t <type> [-A]
Input
• -t — Specifies the type of certificate to view, either the CA certificate or server certificate.
– 1=server certificate
– 2=CA certificate for Directory Service
• -A — Prevents printing headers or labels.
NOTE: If a certificate is generated using comma ‘,’ as one of the parameters for the Organization Name, Common
Name, Location Name, or State Name, then this command displays the partial name in the respective fields only
up to the comma. The rest of the string is not displayed.
129