The display ssl policy command displays the Secure Sockets Layer (SSL) policy configuration.
| Parameter | Description | Value |
|---|---|---|
policy-name |
Specifies the name of an SSL policy. If no SSL policy is specified, the configurations of all SSL policies will be displayed. |
The value is a string of 1 to 23 case-insensitive characters, spaces not supported. |
After loading SSL policies and certificates, you can run the display ssl policy command to view the configurations, including the SSL policy name, service to which an SSL policy is applied, certificate name, and certificate type. The command output shows whether the SSL policies and certificates are available.
# Display the configuration of the SSL policy named ftp_server.
<sysname> display ssl policy ftp_server
SSL Policy Name: ftp_server
Policy Applicants:
Key-pair Type: RSA
Certificate File Type: ASN1
Certificate Type: certificate
Certificate Filename: servercert.der
Key-file Filename: serverkey.der
Auth-code:
MAC:
CRL File:
Trusted-CA File:
Issuer Name:
Validity Not Before:
Validity Not After:
Item |
Description |
|---|---|
SSL Policy Name |
Name of an SSL policy |
Policy Applicants |
Service to which an SSL policy is applied. Currently, SSL policies can be applied to HTTP and FTP services |
Key-pair Type |
Key pair type, which can be:
|
Certificate File Type |
Certificate format, which can be:
|
Certificate Type |
Certificate type:
|
Certificate Filename |
Name of a certificate |
Key-file Filename |
Name of a key pair file |
Auth-code |
Authentication code of a key pair file |
MAC |
Message authentication code |
CRL File |
CRL file |
Trusted-CA File |
Trusted-CA file |
Issuer Name |
Issuer name |
Validity Not Before |
Time when validity starts |
Validity Not After |
Time when validity ends |