Ssl-Proxy Pki - Cisco Catalyst 6500 Series Command Reference Manual

Chapter 2 Commands for the Catalyst 6500 Series SSL Services Module

ssl-proxy pki

To configure and define the PKI implementation on the SSL Services Module, use the ssl-proxy pki
command. Use the no form of this command to disable the logging and clear the memory.
Syntax Description
authenticate
timeout seconds
cache
size entries
timeout minutes
certificate
check-expiring
interval hours
history
Defaults The default settings are as follows:
•
•
•
•
Command Modes
Global configuration
Command History Release
Cisco IOS Release
12.1(13)E and
SSL Services Module
Release 1.1(1)
SSL Services Module
Release 2.1(1)
OL-9105-01
ssl-proxy pki {{authenticate {timeout seconds}} | {cache {{size entries} | {timeout minutes}}}
| {certificate {check-expiring {interval hours}}} | history}
no ssl-proxy pki {authenticate | cache | certificate | history}
Configures the certificate authentication and authorization.
Specifies the timeout in seconds for each request; valid values are from 1 to
600 seconds.
Configures the peer-certificate cache.
Specifies the maximum number of cache entries; valid values are from 0 to
5000 entries.
Specifies the aging timeout value of entries; valid values are from 1 to 600
minutes.
Configures the check-expiring interval.
Specifies the check-expiring interval; valid values are from 0 to 720 hours.
Key and certificate history.
timeout seconds—180 seconds
size entries—0 entries
timeout minutes—15 minutes
interval hours—0 hours, do not check
Modification
Support for this command was introduced on the Catalyst 6500 series
switches.
This command was changed to add the following keywords:
authenticate
•
cache
•
• certificate
Catalyst 6500 Series Switch SSL Services Module Command Reference
ssl-proxy pki
2-91