beautypg.com

Deleting an ldap ca certificate, Verifying ldap ca certificates, Viewing the ldap ca certificate – Brocade Network OS Administrator’s Guide v4.1.1 User Manual

Page 298

background image

Standalone mode

switch# certutil import ldapca directory /usr/ldapcacert/ file cacert.pem protocol

SCP host 10.23.24.56 user jane password

password: ****

Logical chassis cluster mode

switch# certutil import ldapca directory /usr/ldapcacert/ file cacert.pem protocol

SCP host 10.23.24.56 user jane password rbridge-id 3

password: ****

Deleting an LDAP CA certificate

This procedure deletes the LDAP CA certificates of all attached Microsoft Active Directory servers
from the switch.

1. Connect to the switch and log in using an account with admin role permissions.
2. In privileged EXEC mode, enter the no certutil ldapca command.

switch# no certutil ldapca

Do you want to delete LDAP CA certificate? [y/n]:y

3. Enter Y to confirm that you want to delete the LDAP CA certificates.

Verifying LDAP CA certificates

To test whether an LDAP CA certificate has been imported on the switch, in privileged EXEC mode,
enter the no certutil ldapca command and examine the message returned by the system. The
command returns an error if there is no LDAP CA certificate on the switch. If an LDAP CA certificate
exists on the switch, you are prompted to delete it. Enter no to retain the certificate.

When no LDAP CA certificate is present

switch# no certutil ldapcacert

% Error: LDAP CA certificate does not exist.

When an LDAP CA certificate exists on the switch

switch# no certutil ldapcacert

List of swLdapca.pem files:

swLdapca.pem

Viewing the LDAP CA certificate

The following procedure allows you to view the LDAP CA certificate that has been imported on the
switch.

1. Connect to the switch and log in using an account with admin role permissions.
2. In privileged EXEC mode, enter the certutil import syslogca command. Include the full path to the

certificate on the host, specify SCP as the protocol, and include the IP address of the host.

Standalone mode

To view the output in standalone mode, enter show cert-util ldapcacert with
no options.

switch# show cert-util ldapcacert

Deleting an LDAP CA certificate

298

Network OS Administrator’s Guide

53-1003225-04

See also other documents in the category Brocade Computer Accessories: