Deployment Guide

Fabric OS Command Reference 999
53-1003131-01
secCertUtil
2
-nowarn
Deletes the specified file without confirmation. This operand is optional.
export
Exports a CSR to a host. This command is typically used to submit a CSR to the
Certification Authority (CA) that issues the certificate. The following operands are
optional; if omitted, the command prompts interactively for your input.
-ldapcacert -certname certificate name
Exports an LDAP CA certificate from the switch to a remote host. You must
specify the name of the LDAP CA certificate to be exported. Use the show option
for a list of existing certificates.
-fcapswcert
Exports the FCAP switch certificate from the switch to the remote host. The
certificate is exported with the same filename it had when it was imported.
-fcapswcsr
Exports the FCAP switch CSR certificate from the switch to the remote host. The
FCAP switch CSR is exported as switchIPfcapSw.csr.
-fcapcacert
Exports the FCAP CA certificate from the switch to the remote host. The FCAP
CA certificate is exported as switchIPfcapRootCA.pem.
-commonswcert
Exports the switch certificate from the switch to the remote host. It is exported with
the switch IP address as the file name.
-commonswcsr
Exports the switch CSR certificate from the switch to the remote host. The
certificate name is in the format is ip_addresscommonSw.csr.
-commoncacert
Exports the CA certificate from the switch to the remote host. The certificate name
is in the format is ip_addresscommonRootCA.pem.
-protocol ftp | scp
Specifies the protocol as either FTP or SCP.
-ipaddr IP address
Specifies the IP address of the remote host.
-remotedir remote directory
Specifies the remote directory. Provide a fully qualified path name.
-login login name
Specifies the login name for the server.
-password password
Specifies the password for the user account. When using SCP, for security
reasons, do not enter a password on the command line. Use the interactive
version instead. Use CTRL-C to skip the password.
import
Imports a certificate. Use this command to import a certificate from the server or to
download a certificate issued by a CA after sending the CSR to the CA. If the
certificate type is not mentioned, a generic certificate is imported. Specify one of
the following certificates:
-ldapcacert
Imports an LDAP CA certificate.
-fcapswcert
Imports an FCAP switch certificate.