Cisco Cisco ASR 5000
Exec Mode Commands (A-C)
cmp fetch cert-name ▀
Command Line Interface Reference, StarOS Release 18 ▄
4031
cmp fetch cert-name
This command is only applicable for the ASR 9000 running VPC-SI on a Virtualized Services Module (VSM). CMPv2
operations are performed only on one VSM in the chassis. The certificates along with the private key file and the root
certificate are stored on the supervisor card. When invoked on other VSMs in the chassis, this command reads the
certificate, private key and the root certificate from the supervisor card.
operations are performed only on one VSM in the chassis. The certificates along with the private key file and the root
certificate are stored on the supervisor card. When invoked on other VSMs in the chassis, this command reads the
certificate, private key and the root certificate from the supervisor card.
Product
All products supporting IPSec CMPv2 features
Important:
This command appears in the CLI for this release. However, it has not been qualified for use with
any current Cisco StarOS gateway products.
Privilege
Security Administrator
Mode
Exec
The following prompt is displayed in the Exec mode:
[local]host_name#
Syntax
cmp fetch current-cert old-cert-name ca-root ca_name
current-cert
old-cert-name
Specifies a valid security gateway certificate as an alphanumeric string of 1 through 129 characters.
ca-root
ca_name
Specifies the root certificate of the CA server.
ca_name
is an alphanumeric string of 1 through 129
characters.
Usage
Use this command to read the certificate, private key and the root certificate from the supervisor card in an
ASR 9000.
ASR 9000.
Example
The following command fetches a certificate from a specified CA:
cmp fetch current-cert aqaw12345 ca-root ca001