Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

1731

cert-path Enter the path to locally store the self-signed certicate or CSR. The path can be a full

path or a relative path. If the system accepts this path, a notication is sent indicating the

location where the CSR le is stored. You can then export the CSR to a CA using the

“copy” command. Following is an example of a path that you can specify: flash://

certs/s4810-001-request.csr.

key-le Enter the keyword key-file to specify the private key.

private Enter the keyword private to specify that the key is stored in a hidden location in the

NVRAM. Only one private key can exist in a hidden location at any given point in time.

key-path Enter the absolute or relative location on the device where the key is stored.

country 2–letter-

code

(OPTIONAL) Enter the keyword country followed by the two letter code that is used to

identify the country name.

state state (OPTIONAL) Enter the keyword state followed by the name of the state.

locality city (OPTIONAL) Enter the keyword locality followed by the name of the city.

organization

organization-name

(OPTIONAL) Enter the keyword organization followed by the name of the

organization.

orgunit unit-name (OPTIONAL) Enter the keyword orgunit followed by the name of the unit.

cname common-

name

Enter the keyword cname followed by the common name that you want to assign.

NOTE: Common Name is an important attribute while creating a CSR or a

self-signed certicate. Common name is the main identity presented to

connecting entities. By default, the device’s host name acts as the common

name. However, you can still congure a dierent common name for the

device. For example, you can specify an IP address to act as a Common Name

for the device. If the Common Name does not match the device’s presented

identity, then even a properly signed certicate does not validate correctly.

email email-address (OPTIONAL) Enter the keyword email followed a valid email address used for

communication with the organization.

validity days (OPTIONAL) Enter the keyword validity followed by the number of days for which

the certicate is valid.

NOTE: For CSRs, validity has no eect. For self-signed certicates, if validity

is not specied, it defaults to 3650 days, or 10 years.

length length (OPTIONAL) Enter the keyword length followed by a bit length value. The default key

length for both FIPS and non-FIPS mode is 2048. Minimum key length value for FIPS

mode is 2048. The range is from 2048 to 4096. Minimum key length value for non-FIPS

mode is 1024. The range is from 1024 to 4096.

altname altname (OPTIONAL) Enter the keyword altname followed by the subject alternate name for the

organization. For example, altname IP:192.168.1.100.

Defaults NA.

Command Modes EXEC Privilege

Command History

This guide is platform-specic. For command information about other platforms, see the relevant Dell Networking

OS Command Line Reference Guide.

The following is a list of the Dell Networking OS version history for this command:

X.509v3 1731