The server-side certificate sm2 command configures the signature certificate and encryption certificate used when the FW functions as a trusted access proxy client.
| Parameter | Description | Value |
|---|---|---|
signature |
Indicates the signature certificate. |
- |
encryption |
Indicates the encryption certificate. |
- |
certificate-name |
Indicates the certificate name. |
- |
If the public key encryption algorithm is set to SM2, you must configure the signature certificate and encryption certificate.
The FW supports this command only after the trusted access proxy component package is loaded. For details about the component package, see Dynamic Loading.
# Configure the signature certificate and encryption certificate used when the FW functions as a trusted access proxy client.
<sysname> system-view [sysname] slb [sysname-slb] ssl-profile test [sysname-slb-ssl-profile-0] public-key algorithm sm2 [sysname-slb-ssl-profile-0] server-side encryption enable [sysname-slb-ssl-profile-0] server-side certificate sm2 signature cert1 [sysname-slb-ssl-profile-0] server-side certificate sm2 encryption cert2