Cisco CCNA (640-553) Security Training – Using the "Certificate" Command

43
2554

In today & # 39; s article, I will quickly inform you of the Cisco IOS certificate chain configuration mode command named "certificate".

Network administrators (like you) use the "certificate" command to manually add or remove certificates.

Here is the syntax of the command:

certificate certificate serial number

As you can see, the command is very easy to implement; the certificate serial number argument, is the serial number of the certificate to be added or removed.

In the examples below, the certificate with the serial number "0123456789ABCDEF0123456789ABCDEF" is added; then deleted. (Example # 1 adds and Example # 2 removes)

Example 1

Router> activate

Router # configures the terminal

Router (config) #crypto certificate chain CA ittechtipsca

Router (config-cert-chain) #certificate 0123456789ABCDEF0123456789ABCDEF

Router (config-cert-chain) #end

Router # copy run start

Example # 2

Router> activate

Router # configures the terminal

Router (config) #crypto certificate chain CA ittechtipsca

Router (config-cert-chain) #no certificate 0123456789ABCDEF0123456789ABCDEF

% Are you sure you want to delete the certificate (yes / no)? Yes

% Make sure to ask the administrator of the CA to revoke this certificate.

Router (config-cert-chain) #end

Router # copy run start

As you can see, the way to remove a certificate consists of typing the word "no"before the command.

And, if you decide to use the command, make sure your router (s) are running Cisco IOS 11.3T or higher.

Hope this article was very informative and helped you quickly understand the use of certificate command. If you need to know more; I suggest you visit my website, where you will find the latest information regarding Cisco CCNA Security Exam Techniques (640-553).

To your success,


43 COMMENTS

LEAVE A REPLY

Please enter your comment!
Please enter your name here