Reference Guide
Brocade Fabric OS Command Reference 955
53-1004112-02
secCertUtil
-login login name
Specifies the login name for the server.
-password password
Specifies the password for the user account. When using SCP, for security reasons, do not
enter a password on the command line. Use the interactive version instead.
show
Lists all existing PKI-based certificates on the switch. The following operands are optional
and exclusive.
-ldapcacert
Displays the LDAP certificate file name.
-syslogcacert [certificate name]
Displays the list of imported syslog CA certificates. You may specify a file name to display
content of a particular CA certificate.
-fcapall
Indicates whether FCAP-related files exist or are empty.
-fcapswcert
Displays the contents of the FCAP SW certificate.
-commoncertall
Indicates whether CommonCert-related files exist or are empty.
filename
Displays the contents of the specified certificate.
Examples To generate a public/private key pair in interactive mode:
switch:admin> seccertutil genkey
Generating a new key pair will automatically do the following:
1. Delete all existing CSRs.
2. Delete all existing certificates.
3. Reset the certificate filename to none.
4. Disable secure protocols.
Continue (yes, y, no, n): [no] y
Select key size [1024 or 2048]: 1024
Generating new rsa public/private key pair
Done.
To generate a public/private key pair in noninteractive mode:
switch:admin> seccertutil genkey -nowarn -keysize 1024
Generating new rsa public/private key pair
Done.
To generate a CSR in interactive mode:
switch:admin> seccertutil gencsr
Input hash type (sha1 or sha256): sha1
Country Name (2 letter code, eg, US):US
State or Province Name (full name, \
eg, California):California