The server-certificate sm2 command configures the signature certificate and encryption certificate used when the FW functions as an SSL offloading server.
| Parameter | Description | Value |
|---|---|---|
signature |
Indicates the signature certificate. |
- |
encryption |
Indicates the encryption certificate. |
- |
certificate-name |
Indicates the certificate name. |
- |
If the public key encryption algorithm is set to SM2, you must configure the signature certificate and encryption certificate.
The FW supports this command only after the trusted access proxy component package is loaded. For details about the component package, see Dynamic Loading.
# Configure the signature certificate and encryption certificate used when the FW functions as an SSL offloading server.
<sysname> system-view [sysname] slb [sysname-slb] ssl-profile test [sysname-slb-ssl-profile-0] public-key algorithm sm2 [sysname-slb-ssl-profile-0] server-certificate sm2 signature cert1 [sysname-slb-ssl-profile-0] server-certificate sm2 encryption cert2