Brocade Fabric OS Command Reference Manual Supporting Fabric OS v6.3.0 (53-1001337-01, July 2009)
768 Fabric OS Command Reference
53-1001337-01
secCertUtil
2
-certname certificate name
Specifies the certificate name.
-login login name
Specifies the login name for the server.
-password password
Specifies the password for the user account. When using SCP, for security
reasons, do not enter a password on the command line. Use the interactive
version instead.
show Lists all existing PKI-based certificates on the switch. The following operands
are optional and exclusive.
-ldapcacert Lists existing LDAP certificates.
file name Displays the content of the specified certificate.
Examples To generate a public/private key pair in interactive mode:
switch:admin> seccertutil genkey
Generating a new key pair will automatically do the following:
1. Delete all existing CSRs.
2. Delete all existing certificates.
3. Reset the certificate filename to none.
4. Disable secure protocols.
Continue (yes, y, no, n): [no] y
Select key size [1024 or 2048]: 1024
Generating new rsa public/private key pair
Done.
To generate a public/private key pair in non-interactive mode:
switch:admin> seccertutil genkey -nowarn -keysize 1024
Generating new rsa public/private key pair
Done.
To generate a CSR in interactive mode:
switch:admin> seccertutil gencsr
Country Name (2 letter code, eg, US):US
State or Province Name (full name, eg, California):California
Locality Name (eg, city name):San Jose
Organization Name (eg, company name):Brocade
Organizational Unit Name (eg, department or section name): IT
Common Name (Fully qualified Domain Name, or IP address):192.168.38.206
generating CSR, file name is: 192.168.38.206.csr
Done
To generate a CSR in non-interactive mode:
switch:admin> seccertutil gencsr -country US -state California -locality "San Jose" \
-org Brocade -orgunit software -cn 192.168.38.206
generating CSR, file name is: 192.168.38.206.csr
Done
To delete the CSR in interactive mode:
switch:admin> seccertutil delcsr