Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S4128F-ON/S4128T-ON
1391139213931394139513961397139813991400
When you install a certificate-key pair, both take the name of the certificate. Enter the certificate-key
pair name without an extension as the certificate-name value. To remove a certificate-key pair from
the profile, enter the no certificate command.
Example
OS10# crypto security-profile secure-radius-profile
OS10(config-sec-profile)# certificate Dell_host1
Supported
releases
10.4.3.0 or later
cluster security-profile
Creates a security profile for a cluster application.
Syntax
cluster security-profile profile-name
Parameters profile-name Enter the name of the security profile; a maximum of 32 characters.
Default Not configured
Command mode CONFIGURATION
Usage
information
When you enable VLT or a fabric automation application, switches that participate in the cluster use
secure channels to communicate with each other. OS10 installs a default X.509v3 certificate-key pair to
establish secure channels between the peer devices in a cluster. If untrusted devices access the
management or data ports on the switch, replace the default certificate-key pair with a custom X.509v3
certificate-key pair using the cluster security-profile command. A security profile associates a
certificate and private key pair using the certificate command. The no form of the command deletes
the cluster security profile.
Example
OS10(config)# cluster security-profile secure-cluster
OS10(config)#
Supported
releases
10.4.3.0 or later
crypto ca-cert delete
Deletes a CA certificate.
Syntax
crypto ca-cert delete {ca-cert-filepath | all}
Parameters
ca-cert-filepath Enter the local path where the downloaded CA certificate is stored; for
example, home://CAcert.pem or usb://CA-cert.pem.
all Delete all CA certificates.
Default Not configured
Command mode EXEC
Usage
information
To display the currently installed CA certificates, use the show crypto ca-certs command.
Example
OS10# crypto ca-cert delete Amazon_Root_CA.crt
Successfully removed certificate
OS10# crypto ca-cert delete all
Proceed to delete all installed CA certificates? [confirm yes/
no(default)]:yes
Supported
releases
10.4.3.0 or later
1398 Security