Dell POWEREDGE M1000E User Manual

830

Fabric OS Command Reference

53-1001764-02

secCertUtil

2

Note

The execution of this command is subject to Virtual Fabric or Admin Domain restrictions that may
be in place. Refer to chapter 1, "Using Fabric OS commands" and Appendix A, "Command
Availability" for details.

Operands

This command has the following operands:

genkey

Generates a public/private key pair. This is the first step in setting up a
third-party certificate. The following operands are optional; when omitted, the
command prompts interactively for input values to these operands.

-keysize 1024 | 2048

Specifies the size of the key. Valid values are 1024 or 2048. bits. The greater
the value, the more secure is the connection; however, performance
degrades with size. The keys are generated only after all existing CSRs and
certificates have been deleted.

-nowarn

Specifies that no warning is given when overwriting or deleting data. If this
operand is omitted, the command prompts for confirmation before existing
CSRs and certificates are deleted.

delkey

Deletes all public/private key pairs with the exception of Encryption-related
certificates and key pairs. This command prompts for confirmation unless
-nowarn is specified.

-nowarn

Executes the delete operation without confirmation.

-all

Deletes all public/private key pairs including Encryption-related certificates
and keypairs.

gencsr

Generates a new CSR for the switch. This is the second step in setting up a
third-party certificate. The following operands are optional; if omitted, the
command prompts for answers to a series of questions. If only one or a few
operands are specified. the command prompts for input to the remaining
questions. When all questions are answered, a CSR is generated and placed
in a file named ip_address.csr, where ip_address is the IP address of the
switch.

-country country code

Specifies the country. Provide a two-letter country code. For example, US.

-state state

Specifies the state. Provide the full name, for example, California. If the state
consists of multiple words, it must be enclosed in double quotes.

-locality locality

Specifies the city. Provide the full name, for example, "San Jose". If the locality
consists of multiple words, it must be enclosed in double quotes.

-org organization

Specifies the organization. Provide the full name, for example, Brocade. If the
organization consists of multiple words, it must be enclosed in double quotes.

-orgunit organization unit

Specifies the organizational unit, for example, your department name. If the
organizational unit consists of multiple words, it must be enclosed in double
quotes.

-cn common name

Specifies the common name. Provide a fully qualified Domain Name, or IP
address.