Exporting certificates ······································································································································ 251
Removing a certificate ··································································································································· 252
Displaying and maintaining PKI ····················································································································· 253
PKI configuration examples ··························································································································· 253
Failed to obtain CRLs ····························································································································· 272
Failed to export certificates ···················································································································· 273
Configuring SSH ························································································· 275
Overview ························································································································································ 275
How SSH works ····································································································································· 275
SSH authentication methods ·················································································································· 276
SSH support for Suite B ························································································································· 277
Protocols and standards ························································································································ 277
FIPS compliance ············································································································································ 278
Generating local key pairs ······················································································································ 278
Enabling the Stelnet server ···················································································································· 279
Enabling the SFTP server ······················································································································ 279
Enabling the SCP server ························································································································ 280
Enabling NETCONF over SSH ·············································································································· 280
Configuring an SSH user ······················································································································· 282
Working with SFTP directories ··············································································································· 292
Working with SFTP files ························································································································· 292
Displaying help information ···················································································································· 293
Specifying algorithms for SSH2 ····················································································································· 296
vi