Table of Contents
Advertisement
O
F
C
PEN
LOW
OMMANDS
OPENFLOW SSL PEER CERTIFICATE
openflow ssl peer certificate
Overview
Use this command to enable a peer certificate to be sent from the machine that the
OpenFlow Controller is running.
Use the no variant of this command to disable a peer certificate from being sent
from the machine that the OpenFlow Controller is running.
Syntax
openflow ssl peer certificate {<file>|bootstrap}
no openflow ssl peer certificate
Default
Peer certificate validation is disabled by default.
Mode
Global Configuration
Usage
This command enables or disables peer certification on an OpenFlow Controller.
Example
To validate a peer certificate using the bootstrap mode, use the commands:
awplus#
awplus(config)#
To disable peer certificate validation, use the commands:
awplus#
awplus(config)#
Related
show openflow ssl
Commands
openflow controller
Command
Version 5.4.7-1.1: command added
changes
C613-50170-01 Rev B
Parameter
Description
<file>
The CA certificate of an OpenFlow Controller must be in PEM
format and specified with an absolute path using the format
flash:cacert.pem.
You must copy the file from the machine on which the OpenFlow
Controller is running beforehand to the OpenFlow switch.
bootstrap
In bootstrap mode, when the switch first connects to the
OpenFlow Controller, it accepts and saves to RAM a self-signed CA
certificate sent from the Controller. Thereafter, the OpenFlow
switch will only connect to OpenFlow Controllers signed by the
same CA certificate.
configure terminal
openflow ssl peer certificate bootstrap
configure terminal
no openflow ssl peer certificate
Command Reference for x510 Series
AlliedWare Plus™ Operating System - Version 5.4.7-1.x
2046
Hide quick links:
Advertisement
Chapters
Table of Contents
