236 Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide
53-1001931-01
Global Configuration commands
5
key
[export|generate|import|
zeroize]
Authentication key management functions.
• export rsa <name> URL [tftp|ftp] – Exports a keypair related
configuration
• generate rsa <name> <1024-2048> – Generates a keypair
• <1024-2048> – Size of keypair in bits
• import rsa <name> URL [tftp|ftp] – Imports keypair related
configuration
• zeroize rsa <name> – Deletes a keypair
• rsa <identifier> – RSA keypair identifier associated with
keypair
• URL for sending the key, it can be one of the following:
• tftp://<IP>/path/file (or)
• ftp://<user>:<passwd>@<IP>/path/file
map <name> <sequence>
[ipsec-isakmp|
ipsec-manual] dynamic
Enter a crypto map. For more information, see
Crypto-map Instance on page 371.
• name <name> – Names the crypto map entry (not to exceed
32 characters)
• <1-1000> – Sequence to insert into crypto map entry
• ipsec-isakmp – IPSEC w/ISAKMP
• ipsec-manual – IPSEC w/manual keying
• dynamic – Dynamic map entry (remote VPN
configuration) for XAUTH with mode-config or ipsec-l2tp
configuration
pki [authenticate|enroll|
export|import|trustpoint]
Configures certificate parameters. The public key infrastructure is
a protocol that creates encrypted public keys using digital
certificates from certificate authorities. The PKI ensures each
online party is who they claim to be.
• authenticate <name> (terminal|tftp|ftp) – Defines the
authenticate and import CA certificate
• enroll <name> (request|self-signed) – Generates a
certificate request or selfsigned certificate for the trustpoint
• export <name> (request|trustpoint) (tftp|ftp) – Exports the
trustpoint related configuration
• import – Imports a trustpoint related configuration
• certificate – Imports server certificate for the trust point
• crl – certificate Revocation list
• URL – URL to get certificate from URLS:
tftp://<IP>/path/file
ftp://<user>:<passwd>@<IP>/path/file
• terminal – Copy and paste mode of enrollment
• trustpoint – Import trust point including either private
key and server certificate or ca certificate or both
• trustpoint – Creates and configures a trustpoint