beautypg.com

ZyXEL Communications 5 Series User Manual

Page 818

background image

ZyWALL 5/35/70 Series User’s Guide

818

Appendix N Certificates Commands

create

cmp_enroll

addr>

cert>

key>

[key size]

Create a certificate request and enroll for a
certificate immediately online using CMP
protocol. specifies a descriptive name
for the enrolled certificate. specifies
the CA server address. specifies the
name of the CA certificate. specifies
the id and key used for user authentication. The
format is "id:key". To leave the id and key blank,
type ":". specifies a subject name
(required) and alternative name (required). The
format is "subject-name-
dn;{ip,dns,email}=value". If the name contains
spaces, please put it in quotes. [key size]
specifies the key size. It has to be an integer
from 512 to 2048. The default is 1024 bits.

import

[name]

Import the PEM-encoded certificate from stdin.
[name] specifies the descriptive name (optional)
as which the imported certificate is to be saved.
For my certificate importation to be successful, a
certification request corresponding to the
imported certificate must already exist on
ZyWALL. After the importation, the certification
request will automatically be deleted. If a
descriptive name is not specified for the
imported certificate, the certificate will adopt the
descriptive name of the certification request.

export

Export the PEM-encoded certificate to stdout for
user to copy and paste. specifies the
name of the certificate to be exported.

view

View the information of the specified local host
certificate. specifies the name of the
certificate to be viewed.

verify

[timeout]

Verify the certification path of the specified local
host certificate. specifies the name of
the certificate to be verified. [timeout] specifies
the timeout value in seconds (optional). The
default timeout value is 20 seconds.

delete

Delete the specified local host certificate.
specifies the name of the certificate to
be deleted.

list

List all my certificate names and basic
information.

rename

name>

Rename the specified my certificate. name> specifies the name of the certificate to be
renamed. specifies the new name
as which the certificate is to be saved.

def_self_sig

ned

[name]

Set the specified self-signed certificate as the
default self-signed certificate. [name] specifies
the name of the certificate to be set as the
default self-signed certificate. If [name] is not
specified, the name of the current self-signed
certificate is displayed.

Table 290 Certificates Commands (continued)

COMMAND

DESCRIPTION

See also other documents in the category ZyXEL Communications Hardware: