certificate ----------- .. osdx:cfgcmd:: system certificate .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Digital certificates configuration .. osdx:cfgcmd:: system certificate scep .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Simple Certificate Enrollment Protocol configuration .. osdx:cfgcmd:: system certificate scep csr .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE SCEP server name :arg id: Server name (1-32) :instances: Multiple :ref Required: :ref Required: .. osdx:cfgcmd:: system certificate scep csr autoenrollment .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Enable autoenrollment .. osdx:cfgcmd:: system certificate scep csr autoenrollment retry-period .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Wait period between certificate request retries :arg u32: Time in minutes (1-999999) :arg N[m/h/d/w]: Time in minutes/hours/days/weeks .. osdx:cfgcmd:: system certificate scep csr autoenrollment time .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Time before certificate expiration :arg u32: Time in minutes (1-999999) :arg N[m/h/d/w]: Time in minutes/hours/days/weeks .. osdx:cfgcmd:: system certificate scep csr ca-fingerprint .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Expected fingerprint for the CA certificate :instances: Unique .. osdx:cfgcmd:: system certificate scep csr ca-fingerprint md5 .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE MD5 fingerprint :arg id: MD5 fingerprint in hex format (16) .. osdx:cfgcmd:: system certificate scep csr ca-fingerprint sha .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE SHA fingerprint :arg id: SHA fingerprint in hex format (20) .. osdx:cfgcmd:: system certificate scep csr ca-name .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE :arg id: CA name .. osdx:cfgcmd:: system certificate scep csr cert-renew-via-renewalreq .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Perform certificate renewal via msgType RenewalReq instead of PKCSReq .. osdx:cfgcmd:: system certificate scep csr cgi-path .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE :arg txt: CGI script path .. osdx:cfgcmd:: system certificate scep csr challenge-password .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Challenge password CSR request of enrollment :arg txt: Password (1-256) .. osdx:cfgcmd:: system certificate scep csr distinguished-names .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Comma separated list of distinguished names for the CSR :arg txt: DN (1-250) .. osdx:cfgcmd:: system certificate scep csr dns .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Add DNS name as alternative name :arg id: Domain Name System .. osdx:cfgcmd:: system certificate scep csr email .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Add email as alternative name :arg id: Email .. osdx:cfgcmd:: system certificate scep csr encrypted-password .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE :arg password: Encrypted challenge password CSR request of enrollment .. osdx:cfgcmd:: system certificate scep csr ip-address .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Add source IP address as alternative name :arg ipv4: Local IPv4 address :arg ipv6: Local IPv6 address :Local IP address: .. osdx:cfgcmd:: system certificate scep csr local-address .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Local IP address to use as source for SCEP requests :arg ipv4: Local IPv4 address for csr :arg ipv6: Local IPv6 address for csr :Local IP address: .. osdx:cfgcmd:: system certificate scep csr local-interface .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE :arg ifc: Interface to use as source for SCEP requests .. osdx:cfgcmd:: system certificate scep csr local-vrf .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE VRF where socket is bound :ref Reference: system vrf * .. osdx:cfgcmd:: system certificate scep csr port .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE SCEP server port :arg u32: Port (1-65535) .. osdx:cfgcmd:: system certificate scep csr regenerate-key .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Regenerate key on enrollment .. osdx:cfgcmd:: system certificate scep csr rollover .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Enable rollover for CA expiration .. osdx:cfgcmd:: system certificate scep csr rollover retry-period .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Wait period between rollover retries :arg u32: Time in minutes (1-999999) :arg N[m/h/d/w]: Time in minutes/hours/days/weeks .. osdx:cfgcmd:: system certificate scep csr rollover time .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Time before CA expiration :arg u32: Time in minutes (1-999999) :arg N[m/h/d/w]: Time in minutes/hours/days/weeks .. osdx:cfgcmd:: system certificate scep csr rsa-key-length .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE RSA key length in bits to generate :arg u32: Key length (512-4096) .. osdx:cfgcmd:: system certificate scep csr serial-number .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Add router serial number to the CSR .. osdx:cfgcmd:: system certificate scep csr signer-names .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE Comma separated list of distinguished names for the PKCS#7 envelop :arg txt: DN (1-250) .. osdx:cfgcmd:: system certificate scep csr url .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE SCEP server address :arg ipv4: SCEP IPv4 address :arg ipv6: SCEP IPv6 address :arg txt: SCEP hostname .. osdx:cfgcmd:: system certificate trust .. raw:: html AresC640 Atlas840 M10-Smart M2 RS420 RXL15000 SDE :arg file: Add a certificate to the trusted root certificates :instances: Multiple