Exporting a trustpoint configuration – Cisco ASA 5505 User Manual

41-15

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 41 Configuring Digital Certificates

Configuring Digital Certificates

Exporting a Trustpoint Configuration

To export a trustpoint configuration, enter the following command:

Examples

The following example exports PKCS12 data for the trustpoint Main with the passphrase Wh0zits:

hostname (config)# crypto ca export Main pkcs12 Wh0zits

Exported pkcs12 follows:

[ PKCS12 data omitted ]

---End - This line not part of the pkcs12---

Step 10

crypto ca crl request

trustpoint

Example:

hostname (config-ca-crl)# crypto ca crl request Main

Retrieves the current CRL from the CA represented
by the specified trustpoint and tests the CRL
configuration for the current trustpoint.

Step 11

write memory

Example:

hostname (config)# write memory

Saves the running configuration.

Command

Purpose

Command

Purpose

crypto ca export

trustpoint

Example:

hostname(config)# crypto ca export Main

Exports a trustpoint configuration with all associated keys and
certificates in PKCS12 format. The ASA displays the PKCS12 data in
the terminal. You can copy the data. The trustpoint data is password
protected; however, if you save the trustpoint data in a file, make sure
that the file is in a secure location.