Brocade Secure Fabric OS Administrator's Guide - Supporting Fabric OS v3.2.0, v4.4.0, v5.0.1, v5.1.0, 5.2.0, and 5.3.0 (53-1000244-02, June 2007)
18 Secure Fabric OS Administrator’s Guide
53-1000244-02
2
Distributing Digital Certificates to the Switches
You can use the PKICert utility to distribute digital certificates to the switches in the fabric. The
utility ensures that each digital certificate is installed on the corresponding switch.
If you run the utility without any task argument, it defaults to interactive mode, in which it prompts
for the required input
NOTE
If this procedure is interrupted by a switch reboot, the certificate is not loaded and the procedure
must be repeated.
To load digital certificates onto one or more switches while retrieving CSRs, go to step 8 of the
previous section, “Using the PKICert Utility to Obtain CSR”.
To load digital certificates onto one or more switches manually
1. On a PC, double-click pkicert.exe.
The PKICert utility prompts for the events log file name.
2. Type a file name for the events log and press Enter; alternatively, press Enter to accept the
default.
The log file is automatically created in the same directory as pkicert.exe.
PKI CERTIFICATE INSTALLATION UTILITY pki_v1.0.6
All events and errors will be recorded in an event/error log file.
If the file already exists, new event/error information will be
appended to it.
Enter a log file name [or just press Enter to accept the default].
[pki_events.log] => pki_events_fabric1.log
The utility prompts for the desired function.
3. Type 2 to install the certificates and press Enter.
PKI CERTIFICATE INSTALLATION UTILITY pki_v1.0.6
FUNCTIONS
1) Retrieve CSRs from switches & write a CSR file
2) Install Certificates contained in a Certificate file
3) Generate a Licensed-Product/Installed-Certificates report
4) Help using PKI-Cert to get & install certificates
q) Quit PKI Certificate installation utility
Enter choice> 2
The utility prompts for the method of specifying fabric addresses.