Cisco Cisco Packet Data Gateway (PDG) Dépliant
Diameter Endpoint Configuration Mode Commands
▀ tls
▄ Cisco ASR 5x00 Command Line Interface Reference
3360
tls
This command enables/disables the Transport Layer Security (TLS) support between a Diameter client and Diameter
server node.
server node.
Product
All
Privilege
Security Administrator, Administrator
Mode
Exec > Global Configuration > Context Configuration > Diameter Endpoint Configuration
configure > context context_name > diameter endpoint endpoint_name
Entering the above command sequence results in the following prompt:
[context_name]host_name(config-ctx-diameter)#
Syntax
tls { certificate certificate | password password | privatekey private_key }
default tls
default
Disables the TLS support at Diameter endpoint.
certificate certificate
Specifies the certificate for TLS support. The certificate must appear encrypted, and must be an alphanumeric
string of 700 through 900 characters.
string of 700 through 900 characters.
password password
Specifies the password for TLS support. The password must be encrypted, and must be an alphanumeric
string of 6 through 50 characters.
string of 6 through 50 characters.
privatekey private_key
Specifies the private key for TLS support. The private key must be encrypted, and must be an alphanumeric
string of 900 through 1500 characters.
string of 900 through 1500 characters.
Usage
Use this command to configure TLS support between a Diameter client and Diameter server node. By default,
TLS is disabled.
TLS is disabled.
Important:
Both the Diameter client and server must be configured with TLS enabled or TLS disabled;
otherwise, the Diameter connection will be rejected.
Example
The following commands enable the TLS between a Diameter client and Diameter server node: