Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

1701

NOTE: After the certicate is successfully installed, the private key is deleted

from the specied location and copied to the hidden location in NVRAM.

password

passphrase

(Optional) Enter the keyword password followed by the password phrase used to

decrypt the private key.

NOTE: You can generate the private key and certicate on another host.

While doing so, you must keep the private key encrypted with a passphrase so

that the private key is not compromised during transport. The password

phrase acts a facility to decrypt the private key before installing it on the

switch.

Defaults NA.

Command Modes EXEC Privilege

Command History

This guide is platform-specic. For command information about other platforms, see the relevant Dell Networking

OS Command Line Reference Guide.

The following is a list of the Dell Networking OS version history for this command.

Version Description

9.11.0.0 Introduced the command.

Usage Information

The following RBAC roles are allowed to issue this command:

• sysadmin

• secadmin

Certain parameters must be met in order for this command to succeed:

• The downloaded certicate should be formatted properly.

• In order for verication to work, the CA certicate must be installed on the system before running this

command.

• The downloaded certicate’s public key must correspond to the private key.

• If the certicate is not self-signed, then the CA certicate (from the CA that has signed the certicate) must

be installed on the system prior to running this command for verication to work.

NOTE: It is possible for the switch to store two types of certicates: one for the FIPS mode and one for

the non-FIPS mode. If the system is in FIPS mode, the certicate is installed as the FIPS certicate. If

the system is in non-FIPS mode, the certicate is installed as the non-FIPS certicate. When FIPS

mode is enabled or disabled, the certicates (and keys) are switched by the system.

NOTE: For the switch, there are two possible certicates stored - one for FIPS mode, one for non-FIPS

mode. If the system is in FIPS mode, the certicate will be installed as the FIPS certicate. If the

system is in non-FIPS mode, the certicate will be installed as the non-FIPS certicate. When FIPS

mode is enabled/disabled, the certicates (and keys) are switched by the system.

Related Commands

• crypto ca-cert install

1708 X.509v3