Support User Manuals

Brocade Communications Systems RFS7000 Network Router User Manual

Open as PDF

of 839

236 Brocade Mobility RFS4000, RFS6000 and RFS7000 CLI Reference Guide

53-1001931-01

Global Configuration commands

5

key

[export|generate|import|

zeroize]

Authentication key management functions.

• export rsa <name> URL [tftp|ftp] – Exports a keypair related

configuration

• generate rsa <name> <1024-2048> – Generates a keypair

• <1024-2048> – Size of keypair in bits

• import rsa <name> URL [tftp|ftp] – Imports keypair related

configuration

• zeroize rsa <name> – Deletes a keypair

• rsa <identifier> – RSA keypair identifier associated with

keypair

• URL for sending the key, it can be one of the following:

• tftp://<IP>/path/file (or)

• ftp://<user>:<passwd>@<IP>/path/file

map <name> <sequence>

[ipsec-isakmp|

ipsec-manual] dynamic

Enter a crypto map. For more information, see

Crypto-map Instance on page 371.

• name <name> – Names the crypto map entry (not to exceed

32 characters)

• <1-1000> – Sequence to insert into crypto map entry

• ipsec-isakmp – IPSEC w/ISAKMP

• ipsec-manual – IPSEC w/manual keying

• dynamic – Dynamic map entry (remote VPN

configuration) for XAUTH with mode-config or ipsec-l2tp

configuration

pki [authenticate|enroll|

export|import|trustpoint]

Configures certificate parameters. The public key infrastructure is

a protocol that creates encrypted public keys using digital

certificates from certificate authorities. The PKI ensures each

online party is who they claim to be.

• authenticate <name> (terminal|tftp|ftp) – Defines the

authenticate and import CA certificate

• enroll <name> (request|self-signed) – Generates a

certificate request or selfsigned certificate for the trustpoint

• export <name> (request|trustpoint) (tftp|ftp) – Exports the

trustpoint related configuration

• import – Imports a trustpoint related configuration

• certificate – Imports server certificate for the trust point

• crl – certificate Revocation list

• URL – URL to get certificate from URLS:

tftp://<IP>/path/file

ftp://<user>:<passwd>@<IP>/path/file

• terminal – Copy and paste mode of enrollment

• trustpoint – Import trust point including either private

key and server certificate or ca certificate or both

• trustpoint – Creates and configures a trustpoint

previous next