Brocade Mobility RFS Controller CLI Reference Guide (Supporting software release 5.5.0.0 and later) User Manual

36

Brocade Mobility RFS Controller CLI Reference Guide

53-1003098-01

2

crypto pki generate self-signed <TRUSTPOINT-NAME>

[generate-rsa-key|use-rsa-key]

<RSA-KEYPAIR-NAME> autogen-subject-name {(email <SEND-TO-EMAIL>, fqdn <FQDN>,

ip-address <IP>, on <DEVICE-NAME>)}

<EXPORT-TO-URL>

Specify the destination address in the following format:

tftp://<hostname|IP>[:port]/path/file
ftp://<user>:<passwd>@<hostname|IP>[:port]/path/file
sftp://<user>@<hostname|IP>[:port]>/path/file
http://<hostname|IP>[:port]/path/file
cf:/path/file
usb<n>:/path/file

background
{on <DEVICE-NAME>}

Optional. Performs export operation in the background

•

on <DEVICE-NAME> – Optional. Performs export operation on a specified device

•

<DEVICE-NAME> – Specify the name of the AP, wireless controller, or service platform.

on <DEVICE-NAME>

Optional. Performs export operation on a specified device

•

<DEVICE-NAME> – Specify the name of the AP, wireless controller, or service platform.

passphrase
<KEY-PASSPHRASE>
{background {on
<DEVICE-NAME>}|
on <DEVICE-NAME>}

Optional. Encrypts the key with a passphrase before exporting it

•

<KEY-PASSPHRASE> – Specify the passphrase.

•

background – Optional. Performs export operation in the background

•

on <DEVICE-NAME> – Optional. Performs export operation on a specified
device

•

<DEVICE-NAME> – Specify the name of the AP, wireless controller,

or service platform.

pki

Enables PKI management. Use this command to authenticate, export, generate, or delete a trustpoint and
its associated CA certificates.

generate

Generates a CA certificate and a trustpoint

self-signed
<TRUSTPOINT-NAME>

Generates a self-signed CA certificate and a trustpoint

•

<TRUSTPOINT-NAME> – Specify a name for the certificate and its trustpoint.

[generate-rsa-key|
use-rsa-key]
<RSA-KEYPAIR-NAME>

Generates a new RSA Keypair, or uses an existing RSA Keypair

•

generate-rsa-key – Generates a new RSA Keypair for digital authentication

•

use-rsa-key – Uses an existing RSA Keypair for digital authentication

•

<RSA-KEYPAIR-NAME> – If generating a new RSA Keypair, specify a name for it. If using an existing

RSA Keypair, specify its name.

autogen-subject-name

Auto generates the subject name from the configuration parameters. The subject name helps to identify
the certificate

email
<SEND-TO-EMAIL>

Optional. Exports CSR to a specified e-mail address

•

<SEND-TO-EMAIL> – Specify the CA’s e-mail address.

fqdn <FQDN>

Optional. Exports CSR to a specified FQDN

•

<FQDN> – Specify the CA’s FQDN.

ip-address <IP>

Optional. Exports CSR to a specified device or system

•

<IP> – Specify the CA’s IP address.

on <DEVICE-NAME>

Optional. Exports the CSR on a specified device

•

<DEVICE-NAME> – Specify the name of the AP, wireless controller, or service platform.