Crypto pki cert info in config?

Unanswered Question
Mar 2nd, 2010
User Badges:

I noticed there is a command located on 1 switch in the network.  I don't recall running this command, where could it originate from?




crypto pki certificate chain TP-self-signed-2380499712

certificate self-signed 01 nvram:IOS-Self-Sig#3232.cer


Thanks

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Loading.
Ganesh Hariharan Tue, 03/02/2010 - 20:34
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Member's Choice, February 2016

I noticed there is a command located on 1 switch in the network.  I don't recall running this command, where could it originate from?



crypto pki certificate chain TP-self-signed-2380499712

certificate self-signed 01 nvram:IOS-Self-Sig#3232.cer


Thanks


Hi,


This part declares the CA that your router should use and puts you in ca-trustpoint configuration mode. In this case you are using a self signed certificate, meaning you generated and signed the certificate yourself, instead of a trusted third party.
___________________________________________________
crypto pki trustpoint TP-self-signed-265710673
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-265710673
revocation-check none
rsakeypair TP-self-signed-265710673
!
!
This part defines the certificate chain of the certificate in use. Meaning the trusted third party that signed the certificate, in this case yourself because it is a self signed certificate.
__________________________________________________________________________________________________________________________
crypto pki certificate chain TP-self-signed-265710673
certificate self-signed 01 nvram:IOS-Self-Sig#3301.cer


This certificate can be used for many pruposes, one being for instance SSL encryption for the management site and PKI, (public key infrastructure) is used  for allowing https access, among other things also.


Hope to Help !!


Remember to rate the helpful post


Ganesh.H

Actions

This Discussion