Filter
Top Products
Chapter 8 Certificates Commands
ZyWALL (ZyNOS) CLI Reference Guide
56
The following section lists the certificates commands.
Table 24 Certificates Commands
COMMAND DESCRIPTION M
certificates ca_trusted
crl_issuer <name> [on|off]
Specifies whether or not the specified CA issues a CRL.
on|off: specifies whether or not the CA issues CRL. If
[on|off] is not specified, the current CRL issuer status of the
CA displays.
R+B
certificates ca_trusted delete
<name>
Removes the specified trusted CA certificate. R+B
certificates ca_trusted export
<name>
Exports the specified PEM-encoded certificate to your CLI
session’s window for you to copy and paste.
R+B
certificates ca_trusted
http_import <url> <name>
[proxyurl]
Imports the specified certificate file from the specified remote web
server as a trusted CA. The certificate file must be in one of the
following formats: 1) Binary X.509, 2) PEM-encoded X.509, 3)
Binary PKCS#7, and 4) PEM-encoded PKCS#7.
R+B
certificates ca_trusted import
<name>
Imports the specified PEM-encoded CA certificate from your CLI
session. After you enter the command, copy and paste the PEM-
encoded certificate into your CLI session window. With some
terminal emulation software you may need to move your mouse
around to get the transfer going.
R+B
certificates ca_trusted list Displays all trusted CA certificate names and their basic
information.
R+B
certificates ca_trusted rename
<old-name> <new-name>
Renames the specified trusted CA certificate. R+B
certificates ca_trusted verify
<name> [timeout]
Has the ZyWALL verify the certification path of the specified
trusted CA certificate.
R+B
certificates ca_trusted view
<name>
Displays details about the specified trusted CA certificate. R+B
certificates cert_manager
reinit
Re-initializes the certificate manager. R+B
certificates dir_service add
<server-name> <ip-
address[:port]> [login:pswd]
Adds a new directory server entry. R+B
certificates dir_service
delete <server-name>
Removes the specified directory server entry. R+B
certificates dir_service edit
<server-name> <ip-
address[:port]> [login:pswd]
Edits the specified directory server entry. R+B
certificates dir_service list Displays all directory server entry names and their basic
information.
R+B
certificates dir_service
rename <old-server-name> <new-
server-name>
Renames the specified directory server entry. R+B
certificates dir_service view
<server-name>
Displays details about the specified directory server entry. R+B
certificates my_cert create
scep_enroll <name> <ca-
address> <ca-cert><ra-sign>
<ra-encr> <auth key> <subject>
[key length]
Creates a certificate request and enrolls for a certificate
immediately online using SCEP protocol.
ra-sign: specifies the name of the RA (Registration Authority)
signing certificate. If it is not required, type ““ to leave it blank.
ra-encr: specifies the name of the RA encryption certificate. If it
is not required, type ““ to leave it blank .
R+B