beautypg.com

Managing ssl support in sgm, Disabling ssl support in sgm – Cisco OL-5742-01 User Manual

Page 39

background image

18-39

Cisco Signaling Gateway Manager User Guide

OL-5742-01

Chapter 18 Configuring SGM Security

Implementing SSL Support in SGM

Managing SSL Support in SGM

SGM enables you to perform the following tasks to make it easier to manage SSL
support in SGM:

To display the current status of SSL support in SGM, including whether SSL
support is enabled or disabled and which SSL keys and certificates exist, use
either the sgm ssl status or sgm sslstatus command.

To print the SGM server’s SSL certificate in X.509 format, use the
sgm keytool print_crt command.

To list the SSL key/certificate pair on the SGM server, use the
sgm keytool list command.

To list all SSL certificates on the SGM client, launch the SGM SSL
Certificate Tool. SGM lists each imported certificate, including to whom the
certificate was issued, who issued the certificate, and when the certificate
expires.

See the

“SGM Command Reference” section on page C-1

for more information

on the use of these commands.

See the

“Importing an SSL Certificate to an SGM Client” section on page 18-33

for more information on launching the SGM SSL Certificate Tool.

Disabling SSL Support in SGM

SGM enables you to disable SSL support in SGM, and to remove SSL keys and
certificates from the SGM server and clients:

To disable SSL support in SGM, use the sgm ssl disable command.

See the

“sgm ssl” section on page C-98

for more information.

To remove all SSL keys and certificates from the SGM server, use the
sgm keytool clear command. SGM stops the SGM server, if necessary, and
removes the keys and certificates. Before restarting the server, you must
either generate new SSL keys using the sgm keytool genkey command, or
you must completely disable SSL using the sgm ssl disable command.

See the

“SGM Command Reference” section on page C-1

for more

information on the use of these commands.