Cisco ASA 5505 User Manual

Page 860

Advertising
background image

41-42

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 41 Configuring Digital Certificates

Monitoring Digital Certificates

Examples

The following example shows an RSA general-purpose key:

hostname/contexta(config)# show crypto key mypubkey

Key pair was generated at: 16:39:47 central Feb 10 2010

Key name: <Default-RSA-Key>

Usage: General Purpose Key

Modulus Size (bits): 1024

Key Data:

30819f30 0d06092a 864886f7 0d010101 05000381 8d003081 89028181 00ea51b7

0781848f 78bccac2 4a1b5b8d 2f3e30b4 4cae9f86 f4485207 159108c9 f5e49103

9eeb0f5d 45fd1811 3b4aafce 292b3b64 b4124a6f 7a777b08 75b88df1 8092a9f8

5508e9e5 2c271245 7fd1c0c3 3aaf1e04 c7c4efa4 600f4c4a 6afe56ad c1d2c01c

e08407dd 45d9e36e 8cc0bfef 14f9e6ac eca141e4 276d7358 f7f50d13 79020301 0001

Key pair was generated at: 16:34:54 central Feb 10 2010

The following example shows the local CA CRL:

hostname (config)# show crypto ca server crl

Certificate Revocation List:

Issuer: cn=xx5520-1-3-2007-1

This Update: 13:32:53 UTC Jan 4 2010

Next Update: 13:32:53 UTC Feb 3 2010

Number of CRL entries: 2

CRL size: 270 bytes

Revoked Certificates:

Serial Number: 0x6f

Revocation Date: 12:30:01 UTC Jan 4 2010

Serial Number: 0x47

Revocation Date: 13:32:48 UTC Jan 4 2010

The following example shows one user on-hold:

hostname (config)# show crypto ca server user-db on-hold

username: wilma101

email: <None>

dn: <None>

allowed: <not allowed>

notified: 0

hostname (config)#

The following example shows output of the show running-config command, in which local CA
certificate map rules appear:

crypto ca certificate map 1

issuer-name co asc

subject-name attr ou eq Engineering

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals