Crypto – Brocade Mobility RFS7000-GR Controller CLI Reference Guide (Supporting software release 4.1.0.0-040GR and later) User Manual

Page 197

Advertising
background image

Brocade Mobility RFS7000-GR Controller CLI Reference Guide

183

53-1001945-01

Global Configuration Commands

5

crypto

Global Configuration Commands

Use this command to configure encryption related commands.

NOTE

crypto isakmp(policy)Priority

leads you to config-crypto- isakmp instance. For more details

see

Crypto-isakmp Instance on page 237

.

crypto isakmp(client)configuration group default

leads you to config-crypto-group

instance. For more details see

Crypto-group Instance on page 251

.

crypto isakmp(peer)IP Address

leads you to config-crypto-peer instance. For more details see

Crypto-peer Instance on page 261

.

crypto ipsec transformset (name) <value>

leads you to config-crypto- ipsec. Use the crypto

ipsec transform-set command to define the transform configuration for securing data (e.g.,
esp-3des, esp-shahmac, etc.). The transform-set is then assigned to a crypto map using the map’s
set transform-set command. For more details see

Crypto-ipsec Instance on page 271

.

config-crypto-map

leads to config-crypto-map instance. For more information, see

Crypto-map

Instance on page 281

.

crypto pki trustpoint

mode leads to

(config-trustpoint)

instance. For more information, see

Crypto-trustpoint Instance on page 295

.

Syntax

crypto(ipsec|isakmp|key|map|pki)

crypto ipsec (security-association|transform-set)

crypto ipsec (security-association)(lifetime)(kilobyte|Seconds)WORD

crypto ipsec (transform-set)(set

name)[ah-sha-hmac|esp-3des|espaes|esp-aes-192|esp-aes-256|esp-sha-hmac]

crypto isakmp (client|keepalive|key|peer|policy)

crypto isakmp (client)(configuration)(group)(default)

crypto key(export|generate|import|zeroize)

crypto key export rsa <identifier> [SFTP](password)

crypto key generate rsa <identifier> <1024-2048>

crypto key import rsa <identifier> [SFTP] (password)

crypto key zeroize rsa <identifier>

crypto map (map name)<sequence number> (ipsec-isakmp| ipsec-manual)dynamic

crypto pki(authenticate|enroll|export|import|trustpoint)

crypto pki authenticate <name> (terminal|SFTP)

crypto pki enroll<name> (request|self-signed)

crypto pki trustpoint <trustpoint name>

Advertising
Popular Brands
Popular manuals