C613-50631-01 Rev A Command Reference for IE340 Series 2870
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
AMF AND AMF PLUS COMMANDS
ATMF
TRUSTPOINT
atmf trustpoint
Overview Use this command to set a PKI trustpoint for an AMF network. This command
needs to be run on an AMF master or controller.
The self-signed certificate authority (CA) certificate is distributed to every node on
the AMF network. It is used to verify client certificates signed by the trustpoint.
Use the no variant of this command to remove an AMF trustpoint.
Syntax
atmf trustpoint <trustpoint-name>
no atmf trustpoint <trustpoint-name>
Default No trustpoint is configured by default.
Mode Global Configuration
Usage notes Before using the atmf trustpoint command you will need to establish a trustpoint.
For example, you can create a local self-signed trustpoint using the procedure
outlined below.
Create a self-signed trustpoint called ‘our_trustpoint’ with keypair ‘our_key’:
awplus# configure terminal
awplus(config)# crypto pki trustpoint our_trustpoint
awplus(ca-trustpoint)# enrollment selfsigned
awplus(ca-trustpoint)# rsakeypair our_key
awplus(ca-trustpoint)# exit
awplus(config)# exit
Create the root and server certificates for this trustpoint:
awplus# crypto pki authenticate our_trustpoint
awplus# crypto pki enroll our_trustpoint
For more information about the AlliedWare Plus implementation of Public Key
Infrastructure (PKI), see the Public Key Infrastructure (PKI) Feature Overview and
Configuration Guide
Example To configure an AMF trustpoint for the trustpoint ‘our_trustpoint’, use the
commands:
awplus# configure terminal
awplus(config)# atmf trustpoint our_trustpoint
Parameter Description
<trustpoint-name> Name of the trustpoint.
To Next Page
Loading...
Need help?
General
