Default Configuration
The Certificate and the SSL RSA key pairs do not exist.
Command Mode
Global Configuration mode
User Guidelines
•
The command is not saved in the device configuration; however, the certificate and keys
generated by this command are saved in the private configuration, which is never displayed to
the user or backed up to another device.
•
Use this command to generate self-signed certificate for your device.
•
When you export an RSA key pair to a PKCS#12 file, the RSA key pair is as secure as the
passphrase. Therefore, keep the passphrase secure.
Example
The following example regenerates a HTTPS certificate.
Console (enable)# crypto certificate generate key-generate
crypto certificate request
The crypto certificate request Privileged EXEC mode command generates and displays certificate
requests for HTTPS.
Syntax
crypto certificate number request common- name [ou organization-unit] [o organization] [l
location] [st state] [c country]
•
number—Specifies the certificate number. (Range: 1 - 2)
•
common- name—Specifies the fully qualified URL or IP address of the device. (Range: 1-
64)
•
ou organization-unit—Specifies the organization-unit or department name. (Range: 1-
64)
•
o organization—Specifies the organization name. (Range: 1- 64)
•
l location—Specifies the location or city name. (Range: 1- 64)
•
st state—Specifies the state or province name. (Range: 1- 64)
•
c country— Specifies the country name. (Range: 1- 2)
Default Configuration
There is no default configuration for this command.
360
Web Server