Ipsec Cert Cep Config - THOMSON speedtouch 610 Cli Reference Manual

ipsec cert cep config

Generate an offline certificate request according PKCS#10.
SYNTAX:
ipsec cert cep config
where:
url
ca_id
md5
proxy_url
E-DOC-CTC-20040210-0028 v3.0
[url = <quoted string>]
[ca_id = <quoted string>]
[md5 = <quoted string>]
[proxy_url = <quoted string>]
[subjectdn = <distinguished name (RFC1779)>]
[keylen = <number]
[password = <password>]
[email = <quoted string>]
[dnsname = <quoted string>]
[ipaddress = <ip-address>]
[altsubjectdn = <distinguished name (RFC1779)>]
[chknonce = <{yes|no}>]
[chktid = <{yes|no}>]
[keyusage = <quoted string>]
The Uniform Resource Locator (URL) of the CEP entrollment script
on the CA server.
Usually the URL is of the form:
http://<host ip-address>[:<port>]/cgi-bin/pkiclient.exe.
Make sure the server is identified by its IP address and not a DNS
name.
The Certificate Authority (CA) Identity string. Some PKIs rely on
the identity string of the CA server to identify the CA.
A hexadecimal value of 16 bytes, each byte seperated by ":".
Example: 12:A4:B9:0F:58:92:EC:0F:87:DB:03:4F:8A:8B:7D:91.
Represents the Message Digest 5 (MD5) fingerprint. The
CAMD5FingerPrint is the finger print (MD5 hash) of the root CA's
certificate.
The root CA will NOT be authenticated if this entry is
Note
not specified.
The http-proxy server URL in cases where the CA is located behind
a firewall.
Usually the URL is of the form: <host ip-address>[<:port>].
If the port is not specified, the standard HTTP port number (8080) is
assumed.
Make sure the server is identified by its IP address and not by a DNS
name.
IPSec Commands
OPTIONAL
OPTIONAL
OPTIONAL
OPTIONAL
293