EasyManuals Logo
Home>HP>Switch>3600 v2 Series

HP 3600 v2 Series Configuration Guide

HP 3600 v2 Series
449 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #267 background imageLoading...
Page #267 background image
254
Step Command Remarks
9. Configure the fingerprint for
root certificate verification.
root-certificate fingerprint { md5 |
sha1 } string
Required when the certificate
request mode is auto and optional
when the certificate request mode
is manual. In the latter case, if you
do not configure this command, the
fingerprint of the root certificate
must be verified manually.
No fingerprint is configured by
default.
Submitting a PKI certificate request
When requesting a certificate, an entity introduces itself to the CA by providing its identity information
and public key, which will be the major components of the certificate. A certificate request can be
submitted to a CA in offline mode or online mode. In offline mode, a certificate request is submitted to
a CA by an "out-of-band" means such as phone, disk, or email.
An online certificate request can be submitted in manual mode or auto mode.
Submitting a certificate request in auto mode
IMPORTANT:
In auto mode, an entity does not automatically re-request a certificate to replace a certificate that is
expiring or has expired. After the certificate expires, the service usin
g
the certificate mi
g
ht be interrupted.
In auto mode, an entity automatically requests a certificate from the CA server through SCEP if it has no
local certificate for an application working with PKI, and then retrieves the certificate and saves the
certificate locally. Before requesting a certificate, if the PKI domain does not have the CA certificate yet,
the entity automatically retrieves the CA certificate.
To configure an entity to submit a certificate request in auto mode:
Step Command Remarks
1. Enter system view. system-view N/A
2. Enter PKI domain view.
pki domain domain-name N/A
3. Set the certificate request
mode to auto.
certificate request mode auto
[ key-length key-length | password
{ cipher | simple } password ] *
Manual by default
Submitting a certificate request in manual mode
In manual mode, you must submit a local certificate request for an entity. Before the request, you must
retrieve a CA certificate or generate a key pair for the PKI domain if the domain do not have the CA
certificate or the key pair.

Table of Contents

Other manuals for HP 3600 v2 Series

Preview: Command Reference
Command Reference479 pages
Preview: Installation Guide
Installation Guide62 pages
Preview: Security Configuration Guide
Security Configuration Guide398 pages
Preview: Compliance And Safety Manual
Compliance And Safety Manual51 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HP 3600 v2 Series and is the answer not in the manual?

HP 3600 v2 Series Specifications

General IconGeneral
BrandHP
Model3600 v2 Series
CategorySwitch
LanguageEnglish

Related product manuals