Brocade Secure Fabric OS Administrator's Guide (53-1000244-01, November 2006)

Secure Fabric OS Administrator’s Guide 2-13

Publication Number: 53-1000244-01

Distributing Digital Certificates to the Switches

You can use the PKICert utility to distribute digital certificates to the switches in the fabric. The utility

ensures that each digital certificate is installed on the corresponding switch.

If you run the utility without any task argument, it defaults to interactive mode, in which it prompts for

the required input.

To load digital certificates onto one or more switches while retrieving CSRs, go to step 8 of the previous

section, “Using the PKICert Utility to Obtain CSR”.

To load digital certificates onto one or more switches manually

1. On a PC, double-click pkicert.exe.

The PKICert utility prompts for the events log file name.

2. Type a file name for the events log and press Enter; alternatively, press Enter to accept the default.

The log file is automatically created in the same directory as pkicert.exe.

The utility prompts for the desired function.

3. Type 2 to install the certificates and press Enter.

The utility prompts for the method of specifying fabric addresses.

ote

If this procedure is interrupted by a switch reboot, the certificate is not loaded and the procedure must be

repeated.

PKI CERTIFICATE INSTALLATION UTILITY pki_v1.0.6

All events and errors will be recorded in an event/error log file.

If the file already exists, new event/error information will be

appended to it.

Enter a log file name [or just press Enter to accept the default].

[pki_events.log] => pki_events_fabric1.log

PKI CERTIFICATE INSTALLATION UTILITY pki_v1.0.6

FUNCTIONS

1) Retrieve CSRs from switches & write a CSR file

2) Install Certificates contained in a Certificate file

3) Generate a Licensed-Product/Installed-Certificates report

4) Help using PKI-Cert to get & install certificates

q) Quit PKI Certificate installation utility

Enter choice> 2