pki certificate attribute-group

Function

The pki certificate attribute-group command creates the certificate attribute group, and displays the PKI attribute configuration view.

The undo pki certificate attribute-group command deletes the certificate attribute group.

By default, no certificate attribute group exists for the entity.

Format

pki certificate attribute-group group-name

undo pki certificate attribute-group group-name

Parameters

Parameter Description Value
group-name

Indicates the name of the certificate attribute group.

It is a string of 1 to 31 case sensitive characters.

Views

System view

Default Level

2: Configuration level

Task Name and Operations

Task Name Operations
pki write

Usage Guidelines

Usage Scenario

The certificate attribute group carriers the attribute rules of the certificate. To use such an attribute rule, create a certificate attribute group first.

If multiple attribute rules are configured in a certificate attribute group, the relationship among the rules is "and". That is, the action defined in related certificate attribute access control rule is implemented only after the certificate to be authenticated match all the rules.

Example

# Create certificate attribute group group1, and display the PKI attribute configuration view.
<HUAWEI> system-view
[~HUAWEI] pki certificate attribute-group group1
[*HUAWEI-pki-attribute-group1]
Parent Topic: PKI Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >