Cisco CRS-1 - Carrier Routing System Router Configuration Manual page 222

Configuration Examples for Implementing Secure Socket Layer
Command or Action
Step 8
crypto ca enroll ca-name
Example:
RP/0/RP0/CPU0:router# crypto ca enroll myca
Step 9
show crypto ca certificates
Example:
RP/0/RP0/CPU0:router# show crypto ca
certificates
Configuration Examples for Implementing Secure Socket Layer
This section provides the following configuration example:
•
Configuring Secure Socket Layer: Example
The following example shows how to generate the RSA keys for the router, configure a trust point,
authenticate the CA server, obtain a certificate from the CA for the key, and display information about
the certificate:
crypto key generate rsa general-keys
commit
configure
crypto ca authenticate myca
crypto ca enroll myca
show crypto ca certificates
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
SC-216
Configuring Secure Socket Layer: Example, page SC-216
domain ipv4 host xyz-ultra5 10.0.0.5
crypto ca trustpoint myca
enrollment url http://xyz-ultra5
end
Implementing Secure Socket Layer on Cisco IOS XR Software
Purpose
Requests certificates for all of your RSA key pairs.
• This command causes your router to request as many
certificates as there are RSA key pairs, so you need
only perform this command once, even if you have
special usage RSA key pairs.
This command requires you to create a challenge
•
password that is not saved with the configuration. This
password is required if your certificate needs to be
revoked, so you must remember this password.
A certificate may be issued immediately or the router
•
sends a certificate request every minute until the
enrollment retry period is reached and a timeout occurs.
If a timeout occurs, contact your system administrator
to get your request approved, and then enter this
command again.
Verify that the certificate has been granted by using the
•
show crypto ca certificates command.
Displays information about your certificate and the CA
certificate.
OL-20382-01