remote-attestation pki bind domain

Function

The remote-attestation pki bind domain command binds remote attestation to a public key infrastructure (PKI) domain.

The undo remote-attestation pki bind domain command deletes the binding between remote attestation to the PKI domain.

By default, remote attestation is not bound to a PKI domain.

Format

remote-attestation pki bind domain domainName

undo remote-attestation pki bind domain domainName

Parameters

Parameter	Description	Value
domainName	Specifies the name of a PKI domain.	The value is a string of 1 to 64 case-sensitive characters. It cannot contain spaces.

Parameter

Description

Value

domainName

Specifies the name of a PKI domain.

The value is a string of 1 to 64 case-sensitive characters. It cannot contain spaces.

Views

Trust environment management

Default Level

3: Management level

Task Name and Operations

Task Name	Operations
trustem	debug

Usage Guidelines

Usage Scenario

The PKI is a framework that consists of a collection of protocols and cryptographic algorithm suites. It offers a variety of services, such as authentication, integrity protection, confidentiality, and access control.

The remote attestation function uses the PKI authentication mechanism and attestation identity key (AIK) certificates to check the reliability of devices. To bind remote attestation to a PKI domain, run the remote-attestation pki bind domain command.

Prerequisites

A PKI domain has been configured using the pki domain domain-name command

Example

# Bind remote attestation to a PKI domain.

<HUAWEI> system-view
[~HUAWEI] trustem
[*HUAWEI-rustem] remote-attestation pki bind domain domain1