Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

SFTP on CSS11000

Hi Gilles,

Please let me know whether CSS supports loadbalancing of the SFTP servers .

Is there any specific configuration to be defined under the content.

Thanks

  • Application Networking
2 REPLIES
Bronze

Re: SFTP on CSS11000

1. Define a secure File Transfer Protocol (FTP) record file to import certificates and private keys into the CSS from an SFTP server.

# ftp-record ssl_record 192.168.19.21 johndoe "abc123" /home/johndoe

2. Use secure FTP to transfer the imported certificates and private keys to the CSS.

# copy ssl sftp ssl_record import rsacert.pem PEM "passwd123" Connecting

Completed successfully

# copy ssl sftp ssl_record import rsakey.pem PEM "passwd123"

Connecting

Completed successfully

3. Enter configuration mode.

# config

(config) #

4. To use RSA public key exchange and authentication:

a. Associate the imported RSA certificate with a file.

(config) # ssl associate cert myrsacert1 rsacert.pem

b. Associate the imported RSA key pair with a file.

(config) # ssl associate rsakey myrsakey1 rsakey.pem

5. Compare the public key in the associated certificate with the public key stored with the associated private key and verify that they are the same.

(config) # ssl verify myrsacert1 myrsakey1

Certificate mycert1 matches key mykey1

New Member

Re: SFTP on CSS11000

Pradeep,

Thanks for the reply.we dont have SSL Module in the CSS.

Please let me know the preferred configuration without SSL Module in place.

270
Views
0
Helpful
2
Replies
This widget could not be displayed.