Cisco Cisco Packet Data Gateway (PDG)
cmp fetch cert-name
This command is only applicable for the ASR 9000 running VPC-SI on a Virtualized Services Module (VSM).
CMPv2 operations are performed only on one VSM in the chassis. The certificates along with the private key
file and the root certificate are stored on the supervisor card. When invoked on other VSMs in the chassis,
this command reads the certificate, private key and the root certificate from the supervisor card.
CMPv2 operations are performed only on one VSM in the chassis. The certificates along with the private key
file and the root certificate are stored on the supervisor card. When invoked on other VSMs in the chassis,
this command reads the certificate, private key and the root certificate from the supervisor card.
Product
All products supporting IPSec CMPv2 features
This command appears in the CLI for this release. However, it has not been qualified for use with any
current Cisco StarOS gateway products.
current Cisco StarOS gateway products.
Important
Privilege
Security Administrator
Command Modes
Exec
The following prompt is displayed in the Exec mode:
[local]
host_name
#
Syntax Description
cmp fetch current-cert old-cert-name ca-root ca_name
current-cert old-cert-name
Specifies a valid security gateway certificate as an alphanumeric string of 1 through 129 characters.
ca-root ca_name
Specifies the root certificate of the CA server. ca_name is an alphanumeric string of 1 through 129 characters.
Usage Guidelines
Use this command to read the certificate, private key and the root certificate from the supervisor card in an
ASR 9000.
ASR 9000.
Examples
The following command fetches a certificate from a specified CA:
cmp fetch current-cert aqaw12345 ca-root ca001
cmp fetch current-cert aqaw12345 ca-root ca001
Command Line Interface Reference, Modes E - F, StarOS Release 19
460
Exec Mode Commands (A-C)
cmp fetch cert-name