ZyXEL Communications 4.04 ユーザーズマニュアル
Chapter 8 Certificates Commands
ZyWALL (ZyNOS) CLI Reference Guide
56
The following section lists the certificates commands.
Table 24 Certificates Commands
COMMAND
DESCRIPTION
M
certificates ca_trusted
crl_issuer <name> [on|off]
Specifies whether or not the specified CA issues a CRL.
on|off
: specifies whether or not the CA issues CRL. If
[on|off]
is not specified, the current CRL issuer status of the
CA displays.
R+B
certificates ca_trusted delete
<name>
Removes the specified trusted CA certificate.
R+B
certificates ca_trusted export
<name>
Exports the specified PEM-encoded certificate to your CLI
session’s window for you to copy and paste.
session’s window for you to copy and paste.
R+B
certificates ca_trusted
http_import <url> <name>
[proxyurl]
Imports the specified certificate file from the specified remote web
server as a trusted CA. The certificate file must be in one of the
following formats: 1) Binary X.509, 2) PEM-encoded X.509, 3)
Binary PKCS#7, and 4) PEM-encoded PKCS#7.
server as a trusted CA. The certificate file must be in one of the
following formats: 1) Binary X.509, 2) PEM-encoded X.509, 3)
Binary PKCS#7, and 4) PEM-encoded PKCS#7.
R+B
certificates ca_trusted import
<name>
Imports the specified PEM-encoded CA certificate from your CLI
session. After you enter the command, copy and paste the PEM-
encoded certificate into your CLI session window. With some
terminal emulation software you may need to move your mouse
around to get the transfer going.
session. After you enter the command, copy and paste the PEM-
encoded certificate into your CLI session window. With some
terminal emulation software you may need to move your mouse
around to get the transfer going.
R+B
certificates ca_trusted list
Displays all trusted CA certificate names and their basic
information.
information.
R+B
certificates ca_trusted rename
<old-name> <new-name>
Renames the specified trusted CA certificate.
R+B
certificates ca_trusted verify
<name> [timeout]
Has the ZyWALL verify the certification path of the specified
trusted CA certificate.
trusted CA certificate.
R+B
certificates ca_trusted view
<name>
Displays details about the specified trusted CA certificate.
R+B
certificates cert_manager
reinit
Re-initializes the certificate manager.
R+B
certificates dir_service add
<server-name> <ip-
address[:port]> [login:pswd]
Adds a new directory server entry.
R+B
certificates dir_service
delete <server-name>
Removes the specified directory server entry.
R+B
certificates dir_service edit
<server-name> <ip-
address[:port]> [login:pswd]
Edits the specified directory server entry.
R+B
certificates dir_service list
Displays all directory server entry names and their basic
information.
information.
R+B
certificates dir_service
rename <old-server-name> <new-
server-name>
Renames the specified directory server entry.
R+B
certificates dir_service view
<server-name>
Displays details about the specified directory server entry.
R+B
certificates my_cert create
scep_enroll <name> <ca-
address> <ca-cert><ra-sign>
<ra-encr> <auth key> <subject>
[key length]
Creates a certificate request and enrolls for a certificate
immediately online using SCEP protocol.
immediately online using SCEP protocol.
ra-sign
: specifies the name of the RA (Registration Authority)
signing certificate. If it is not required, type ““ to leave it blank.
ra-encr
: specifies the name of the RA encryption certificate. If it
is not required, type ““ to leave it blank .
R+B