< Home

Importing and Releasing a Peer Certificate

Context

In the digital envelope authentication mode, the device as the data sender must have the receiptant's public key configured. Importing a peer certificate is a method to obtain the public key of a peer entity. This method connects the user identity information to the public key. It has high security and is applicable to large networks.

If the imported peer certificate is not used, release the certificate.

Procedure

  • Importing the peer certificate
    1. Run system-view

      The system view is displayed.

    2. Run pki import-certificate peer peer-name { der | pem | pkcs12 } filename [ filename ]

      Or run pki import-certificate peer peer-name pkcs12 filename filename password password

      The certificate of the peer device is imported to the device memory.

  • Releasing the peer certificate
    1. Run system-view

      The system view is displayed.

    2. Run pki release-certificate peer { name peer-name | all }

      The peer certificate is released.

Verifying the Configuration

Run the display pki peer-certificate { name peer-name | all } command to check the imported peer certificate.

Parent Topic: Configuring the Extended Functions
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >