2
Copyright © 2007, 2008 Nortel Networks
.
To view basic information about all configured certificates, use
the /info/certs command.
Export the certificate. Enter the following command:
/cfg/cert #/export
You are prompted to enter the certificate and key export
information. The file is exported as soon as you have provided
all the required information.
information" (page 319)
Table 56
Certificate and key export information
Parameter
Protocol
Server host name
or IP address
Export format
Export pass
phrase
Reconfirm export
pass phrase
Nortel Secure Network Access Switch
Using the Command Line Interface
NN47230-100 03.01 Standard
28 July 2008
Managing private keys and certificates 319
Table 56 "Certificate and key export
explains the required parameters.
Description
The file export protocol. The options are TFTP,
FTP, SCP, SFTP. The default is TFTP.
The host name or IP address of the file
exchange server.
The key and certificate format in which you
want to export the key and certificate. Valid
options are:
•
PEM
•
DER
•
NET
•
PKCS12 (also known as PFX)
The PEM and PKCS12 formats always combine
the private key and certificate in the same file.
Nortel recommends using the PKCS12
format. Most web browsers accept importing a
combined key and certificate file in the PKCS12
format.
The formats have different capabilities
regarding private key encryption and the ability
to save the key and certificate in separate files.
For more information about the formats, see
"Key and certificate formats" (page
The password phrase to encrypt the private
key. The password phrase must be at least four
characters in length.
Re-enter the password phrase for confirmation.
298).