enrollment retry count
To specify the number of times a router resends a certificate request to a certification authority (CA), use the
enrollment retry count command in trustpoint configuration mode. To reset the retry count to the default,
use the no form of this command.
enrollment retry count number
no enrollment retry count number
Syntax Description
Number of times the router resends a certificate request when the router does not receive
a certificate from the previous request. The range is from 1 to 100.
number
Command Default
If no retry count is specified, the default value is 10.
Command Modes
Trustpoint configuration
Command History
ModificationRelease
This command was introduced.Release 2.0
Usage Guidelines
After requesting a certificate, the router waits to receive a certificate from the CA. If the router does not receive
a certificate within a specified time (the retry period), the router sends another certificate request. The router
continues to send requests until it receives a valid certificate, the CA returns an enrollment error, or the
configured number of retries (the retry count) is exceeded.
To reset the retry count to the default of 10, use the no form of this command. Setting the retry count to 0
indicates an infinite number of retries. The router sends the CA certificate requests until a valid certificate is
received (there is no limit to the number of retries).
Task ID
OperationsTask ID
read, writecrypto
Examples
The following example shows how to declare a CA, change the retry period to 10 minutes, and change the
retry count to 60 retries. The router resends the certificate request every 10 minutes until receipt of the certificate
Cisco IOS XR System Security Command Reference for the Cisco CRS Router, Release 4.1
206 OL-24740-01
Public Key Infrastructure Commands
enrollment retry count
To Next Page
Loading...
Need help?
General
