Command Reference Guide
Fabric OS Command Reference 903
53-1002746-01
secCertUtil
2
To import an LDAP certificate from a remote host to the local switch in interactive mode:
switch:admin> seccertutil import -ldapcacert
Select protocol [ftp or scp]: ftp
Enter IP address: 195.168.38.206
Enter remote directory: /users/home/remote_certs
Enter certificate name (must have ".crt",\
".cer" or ".pem" suffix): ldap.cer
Enter Login Name: mylogin
Enter Password: password
Success: imported certificate [ldap.cert].
To import an LDAP certificate from a remote host to the local switch in noninteractive mode:
switch:admin> seccertutil import -ldapcacert \
-protocol ftp -ipaddr 195.168.38.206 \
-remotedir /users/home/remote_certs -certname ldap.cer \
-login abcd -passwd passwd
Success: imported certificate [ldap.cert].
To import an FCAP switch certificate in interactive mode:
switch:admin> seccertutil import -fcapswcert
Select protocol [ftp or scp]: scp
Enter IP address: 10.32.2.25
Enter remote directory: /users/myname/OPENSSL
Enter certificate name (must have ".pem" suffix):01.pem
Enter Login Name: myname
myname@10.32.2.25's password:
Success: imported certificate [01.pem].
To import an FCAP CA certificate in interactive mode:
switch:admin> seccertutil import -fcapcacert
Select protocol [ftp or scp]: scp
Enter IP address: 10.32.2.25
Enter remote directory: /users/myname/OPENSSL
Enter certificate name (must have ".pem" suffix):CACert.pem
Enter Login Name: myname
myname@10.32.2.25's password:
Success: imported certificate [CACert.pem].
To import a PKI-based certificate with configure and enable option in interactive mode:
switch:admin> seccertutil import -config swcert -enable https
Select protocol [ftp or scp]: ftp
Enter IP address: 192.168.38.206
Enter remote directory: /users/home/mycerts
Enter certificate name (must have ".crt" or ".cer"\
".pem" or "psk" suffix): filename.crt
Enter Login Name: username
Enter Password: password
Success: imported certificate [filename.crt].
Certificate file in configuration has been updated.
Secure http has been enabled.