Specifications

RoamAbout Mobility System Software Command Line Reference 15-1

Cryptography Commands

Adigitalcertificateisaformofelectronicidentificationforcomputers.TheRoamAboutSwitch

requiresdigitalcertificatestoauthenticateitscommunicationstoRoamAboutSwitchManager

andWebView,toWebAAAclients,andtoExtensibleAuthenticationProtocol(EAP)clientsfor

whichtheRoamAboutswitchperformsallEAPprocessing.Certificatescanbegeneratedon

the

RoamAboutorobtainedfromacertificate authority(CA).Keyscontainedwithinthecertificates

allowtheRoamAbout,itsservers,anditswirelessclientstoexchangeinformationsecuredby

encryption.

Thischapterpresentscryptographycommandsalphabetically.Usethefollowingtabletolocate

commandsinthischapter.

Notes:

• If the switch does not already have certificates, MSS automatically generates the

missing ones the first time you boot using MSS Version 4.2 or later. You do not need to

install certificates unless you want to replace the ones automatically generated by MSS.

(For more information, see the “Certificates Automatically Generated by MSS” section in

the “Managing Keys and Certificates” chapter of the RoamAbout Mobility System

Software Configuration Guide.)

• Before installing a new certificate, verify with the show timedate and show timezone

commands that the RoamAbout Switch is set to the correct date, time, and time zone.

Otherwise, certificates might not be installed correctly.

For information about... Refer to page...

crypto ca-certificate 15-2

crypto certificate 15-4

crypto generate key 15-6

crypto generate request 15-7

crypto generate self-signedweb 15-9

crypto otp 15-11

crypto pkcs12 15-13

show crypto ca-certificate 15-15

show crypto certificate 15-17

show crypto key domain 15-18

show crypto key ssh 15-19