Cisco Catalyst 2960-XR Security Configuration Manual page 120
Ios release 15.0 2 ex1
Hide thumbs
Also See for Catalyst 2960-XR:
- Configuration manual (196 pages) ,
- Configuration manuals (120 pages) ,
- Reference (52 pages)
Table of Contents
Advertisement
Configuring a CA Trustpoint
Command or Action
Step 5
crypto ca trustpoint name
Example:
Switch(config)# crypto ca trustpoint
your_trustpoint
Step 6
enrollment url url
Example:
Switch(ca-trustpoint)# enrollment url
http://your_server:80
Step 7
enrollment http-proxy host-name port-number
Example:
Switch(ca-trustpoint)# enrollment
http-proxy your_host 49
Step 8
crl query url
Example:
Switch(ca-trustpoint)# crl query
ldap://your_host:49
Step 9
primary name
Example:
Switch(ca-trustpoint)# primary
your_trustpoint
Step 10
exit
Example:
Switch(ca-trustpoint)# exit
Step 11
crypto ca authentication name
Example:
Switch(config)# crypto ca authentication
your_trustpoint
Catalyst 2960-XR Switch Security Configuration Guide, Cisco IOS Release 15.0(2)EX1
98
Purpose
Specifies a local configuration name for the CA trustpoint and enter
CA trustpoint configuration mode.
Specifies the URL to which the switch should send certificate
requests.
(Optional) Configures the switch to obtain certificates from the
CA through an HTTP proxy server.
• For host-name , specify the proxy server used to get the CA.
• For port-number, specify the port number used to access the
CA.
Configures the switch to request a certificate revocation list (CRL)
to ensure that the certificate of the peer has not been revoked.
(Optional) Specifies that the trustpoint should be used as the
primary (default) trustpoint for CA requests.
• For name, specify the trustpoint that you just configured.
Exits CA trustpoint configuration mode and return to global
configuration mode.
Authenticates the CA by getting the public key of the CA. Use the
same name used in Step 5.
Configuring Secure Socket Layer HTTP
OL-29434-01
Advertisement
Table of Contents
