< Home

security server-certificate

Function

The security server-certificate command specifies the certificate that the FW sends to users when they use HTTPS for RESTCONF authentication.

The undo security server-certificate command restores the use of the default certificate.

Format

security server-certificate file-name

undo security server-certificate

Parameters

Parameter Description Value
file-name Specifies a certificate name. The value is a string of 1 to 64 characters.

Views

API view

Default Level

3: Management level

Usage Guidelines

By default, the FW sends the default certificate if users use HTTPS for the authentication. However, the default certificate is defined by the FW but not issued by the CA. Therefore, the users cannot verify its legitimacy.

Before executing the security server-certificate command, you need to apply for a local certificate and a CA certificate from the CA and import the local certificate to the FW memory and CA certificate to the browser of the user's PC.

Example

# Configure the FW to use certificate server.cer when users use HTTPS for the authentication.

<sysname> system-view
[sysname] api
[sysname-api] security server-certificate server.cer
Parent Topic: Northbound Interface Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >