Cisco Cisco Packet Data Gateway (PDG)
IPSec Certificates
Certificate Management Protocol (CMPv2) ▀
IPSec Reference, StarOS Release 18 ▄
119
Failure Response Handling (ip/cp/kup/pollRep)
Figure 20. Call Flow: Failure Response Handling
CLI Commands
Important:
The commands described below appear in the CLI for this release. However, they have not been
qualified for use with any current Cisco StarOS gateway products.
Exec Mode Commands
cmp initialize modulus
Triggers an Initial Certification Request (CR) after generating a public and private key pair, as well as an X.509
certificate to be included in the CR.
certificate to be included in the CR.
cmp intialize modulus mod_type cert-name name subject-name “subject_string”
ca-psk key ca-root ca_name ca-url url
ca-psk key ca-root ca_name ca-url url
Refer to the Command Line Interface Reference for a complete description of this command and its keywords.
cmp enroll current-cert
Triggers a Certification Request (CR) after generating a public and private key pair, as well as an X.509 certificate to be
included in the CR for a second certificate from the same Certificate Authority (CA).
included in the CR for a second certificate from the same Certificate Authority (CA).
cmp enroll current-cert old-cert-name modulus mod_type subject-name
“subject_string” cert-name name ca-root ca_name ca-url url
“subject_string” cert-name name ca-root ca_name ca-url url
Refer to the Command Line Interface Reference for a complete description of this command and its keywords.