Two-Factor Authentication commands 35
DISABLE TWOFACTOR
• Description:
Disables Two-Factor Authentication
• Access level/Bay level:
OA administrator
• Restrictions:
None
DOWNLOAD CA CERTIFICATE
• Command:
DOWNLOAD CA CERTIFICATE "<url>"
• Description:
o Downloads a CA certificate to act as the trusted certification authority to validate user certificates
when using Two-Factor Authentication.
o Specify a URL where this certificate can be found.
o Supported protocols are HTTP, FTP, and TFTP.
o Format the URL as protocol://host/path/file.
o If your FTP server does not support anonymous connections, you can specify a user name and
password in the format ftp://username:password@host/path/file.
o The URL syntax for IPv4 addresses is protocol://<ipv4 address>/path/file.
o The URL syntax for IPv6 addresses is protocol://[<ipv6 address>]/path/file.
• Access level/Bay level:
OA administrator
• Restrictions:
o Allows the download of up to five different certificates.
o When the Onboard Administrator is operating in FIPS Mode, the minimum RSA key length is 2048
bits, and the signature hash algorithm must be SHA1, SHA-224, SHA-256, SHA-384, or SHA-512.
DOWNLOAD USER CERTIFICATE
• Command:
DOWNLOAD USER CERTIFICATE "<user name>" <url>
• Description:
o Downloads an x.509 certificate for the user from <url>. The file at <url> must be a Base64 PEM
encoded file.
o Downloads a CA certificate used in Two-Factor Authentication.
• Access level/Bay level:
OA administrator
• Restrictions:
