No relevant resource is found in the selected language.

This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>Search

Reminder

To have a better experience, please upgrade your IE browser.

upgrade

Command Reference for Block

OceanStor Dorado V3 Series V300R002

This document is applicable to OceanStor Dorado3000 V3, Dorado5000 V3, Dorado6000 V3 and Dorado18000 V3. Based on the CLI provided by the DeviceManager, this document describes how to use various commands classified by functions and how to set the CLI and manage the storage system through these commands.
Rate and give feedback:
Huawei uses machine translation combined with human proofreading to translate this document to different languages in order to help you better understand the content of this document. Note: Even the most advanced machine translation cannot match the quality of professional translators. Huawei shall not bear any responsibility for translation accuracy and it is recommended that you refer to the English document (a link for which has been provided).
import ssl_certificate

import ssl_certificate

Function

The import ssl_certificate command is used by customers to replace the digital certificate and private key of OceanStor DeviceManager.

NOTE:

The digital certificates and private keys of all controllers must be replaced one by one.

Format

import ssl_certificate ip=? user=? password=? cert_file=? key_file=? [ port=? ] [ protocol=? ] [ passphrase=? ]

Parameters

Parameter

Description

Value

ip=?

IP address of the FTP/SFTP server.

-

user=?

User allowed by the FTP/SFTP server.

The value contains 1 to 64 characters without colons (:).

password=?

Password of a user allowed by the FTP/SFTP server.

The value contains 1 to 64 characters.

cert_file=?

Path for storing the certificate file on the FTP/SFTP server.

The value is a character string that ends with file name extension ".pem" (case insensitive).

key_file=?

Path for storing the private key on the FTP/SFTP server.

The value is a character string that ends with file name extension ".pem" (case insensitive).

port=?

Port of the FTP/SFTP server.

The value ranges from 1 to 65,535.

protocol=?

Protocol used for transmitting the new certificate and private key.

The value can be "FTP" or "SFTP".

passphrase=?

Encrypted private key password.

The value contains 1 to 64 characters.

Level

Super administrator

Usage Guidelines

If the customer wants to use their own OceanStor DeviceManager private certificate and private key, they can use the openssl tool to generate a private key and digital certificate and then import them.

Example

  • Replace the digital certificate and private key of OceanStor DeviceManager.
    admin/>import ssl_certificate ip=10.133.194.20 user=admin password=****** cert_file=cert_11.pem key_file=key_11.pem protocol=SFTP passphrase=****** 
    Danger: You are about to replace the SSL certificate. This operation will cause DeviceManager automatically to restart, interrupting services. 
    Suggestion: Before running the command, confirm that you want to replace the SSL certificate. 
    Have you read danger alert message carefully?(y/n)y 
    Are you sure you really want to perform the operation?(y/n)Y 
    Command executed successfully.
  • Use an unencrypted SSL certificate to replace the digital certificate of the OceanStor DeviceManager.
    admin/>import ssl_certificate ip=10.133.194.20 user=admin password=****** cert_file=cert_11.pem key_file=key_11.pem protocol=SFTP 
    Danger: You are about to use an unencrypted SSL certificate to replace the current SSL certificate. Security risks may exist in the unencrypted certificate. This operation will cause DeviceManager automatically to restart, interrupting services. 
    Suggestion:1: Use an encrypted certificate to replace the current certificate.2. Before running the command, confirm that you want to replace the SSL certificate. 
    Have you read danger alert message carefully?(y/n)y 
    Are you sure you really want to perform the operation?(y/n)Y 
    Command executed successfully.

System Response

None

Translation
Download
Updated: 2019-07-16

Document ID: EDOC1100049140

Views: 114228

Downloads: 134

Average rating:
This Document Applies to these Products
Related Documents
Related Version
Share
Previous Next