beautypg.com

Importing a syslog ca certificate, Deleting a syslog ca certificate, Verifying syslog ca certificates – Brocade Network OS Administrator’s Guide v4.1.1 User Manual

Page 299

background image

Logical chassis cluster mode

To view the output in logical chassis cluster mode, enter show cert-util
ldapcacert followed by the desired RBridge ID. This example displays the
certificate for rbridge-id 3.

switch# show cert-util syslogcacert rbridge-id 3

Importing a syslog CA certificate

The following procedure imports the syslog CA certificate from the remote host to the switch.

1. Connect to the switch and log in using an account with admin role permissions.
2. In privileged EXEC mode, enter the certutil import syslogca command. Include the full path to the

certificate on the host, specify SCP as the protocol, and include the IP address of the host.

Standalone mode

switch# certutil import ldapca directory /usr/ldapcacert/ file cacert.pem protocol

SCP host 10.23.24.56 user jane password

password: ****

Logical chassis cluster mode

switch# certutil import syslogca directory /usr/ldapcacert/ file cacert.pem protocol

SCP host 10.23.24.56 user jane password rbridge-id 3

password: ****

Deleting a syslog CA certificate

The following procedure deletes the syslog CA certificates of all attached Active Directory servers from
the switch.

1. Connect to the switch and log in using an account with admin role permissions.
2. In Privileged EXEC mode, enter the no certutil syslogca command. You will be prompted to confirm

that you want to delete the syslogca certificates.

Standalone mode

This example deletes all the syslogca certificates.

switch# no certutil syslogca

Do you want to delete syslogca certificate? [y/n]:y

Warning: All the syslogca CA certificates are deleted.

Logical chassis cluster mode

This example deletes the syslogca certificates for rbridge-id 3 only.

switch# no certutil syslogca rbridge-id 3

Do you want to delete syslogca certificate? [y/n]:y

Warning: All the syslog CA certificates are deleted.

Verifying syslog CA certificates

To test whether a syslogCA certificate has been imported on the switch, in privileged EXEC mode, enter
the no certutil syslogca command and examine the message returned by the system. The command
returns an error if there is no syslog CA certificate on the switch. If a syslog CA certificate exists on the
switch, you are prompted to delete it. Enter no to retain the certificate.

Importing a syslog CA certificate

Network OS Administrator’s Guide

299

53-1003225-04

See also other documents in the category Brocade Computer Accessories: