User's Manual
274 Appendix G Command Interpreter
N0115791
create cmp_enroll
<name> <CA
addr> <CA
cert> <auth
key>
<subject>
[key size]
Creates a certificate request and enrolls for a
certificate immediately online using CMP protocol.
<name> specifies a descriptive name for the enrolled
certificate.
<CA addr> specifies the CA server address.
<CA cert> specifies the name of the CA certificate.
<auth key> specifies the id and key used for user
authentication. The format is "id:key". To leave the id
and key blank, type ":".
<subject> specifies a subject name (required) and
alternative name (required). The format is
"subject-name-dn;{ip,dns,email}=value". If the name
contains spaces, put it in quotes.
[key size] specifies the key size. It has to be an
integer from 512 to 2 048. The default is 1 024 bits.
import [name]
Imports the PEM-encoded certificate from stdin.
[name] specifies the descriptive name (optional) the
imported certificate is saved as. For my certificate
importation to be successful, a certification request
corresponding to the imported certificate must
already exist on BCM50a Integrated Router. After
the importation, the certification request is
automatically deleted. If a descriptive name is not
specified for the imported certificate, the certificate
adopts the descriptive name of the certification
request.
export <name>
Exports the PEM-encoded certificate to stdout for
theuser to copy and paste.
<name> specifies the name of the certificate to be
exported.
view <name>
Views the information of the specified local host
certificate.
<name> specifies the name of the certificate to be
viewed.
verify <name>
[timeout]
Verifies the certification path of the specified local
host certificate.
<name> specifies the name of the certificate to be
verified.
[timeout] specifies the timeout value in seconds
(optional). The default timeout value is 20 seconds.
delete <name>
Deletes the specified local host certificate.
<name> specifies the name of the certificate to be
deleted.
list
Lists all my certificate names and basic information.
Table 64 Certificates commands
Command Description