Locality - HPE FlexFabric 7900 Series Security Command Reference
Hide thumbs
Also See for FlexFabric 7900 Series:
- Layer 3 ip routing command reference (414 pages) ,
- Security configuration manual (323 pages) ,
- Configuration manual (211 pages)
Table of Contents
Advertisement
port port-number: Specifies the port number of the LDAP server. The value range is 1 to 65535, and
the default is 389.
vpn-instance vpn-instance-name: Specifies an MPLS L3VPN instance by its name, a
case-sensitive string of 1 to 31 characters. If the LDAP server is on the public network, do not specify
this option.
Usage guidelines
You must specify an LDAP server in a PKI domain in the following situations:
•
The certificate repository uses LDAP for certificate distribution.
•
The CRL repository uses LDAP for CRL distribution. However, the CRL repository URL
configured for the PKI domain does not contain the IP address or host name of the LDAP
server.
You can specify only one LDAP server in a PKI domain. If you configure this command multiple times,
the most recent configuration takes effect.
Examples
# Specify an LDAP server 10.0.0.1 for PKI domain aaa.
<Sysname> system-view
[Sysname] pki domain aaa
[Sysname-pki-domain-aaa] ldap-server host 10.0.0.1
# Specify an LDAP server 10.0.0.11 in VPN instance vpn1 for PKI domain aaa. Set the port number
to 333.
<Sysname> system-view
[Sysname] pki domain aaa
[Sysname-pki-domain-aaa] ldap-server host 10.0.0.11 port 333 vpn-instance vpn1
Related commands
•
pki retrieve-certificate
•
pki retrieve-crl
locality
Use locality to set the locality of a PKI entity.
Use undo locality to remove the configuration.
Syntax
locality locality-name
undo locality
Default
No locality is set for a PKI entity.
Views
PKI entity view
Predefined user roles
network-admin
mdc-admin
Parameters
locality-name: Specifies a locality, a case-sensitive string of 1 to 63 characters. No comma can be
included. You can set a city name as the locality.
132
Advertisement
Table of Contents
