< Home

pki delete-certificate

Function

The pki delete-certificate command deletes a certificate from the memory.

Format

pki delete-certificate { ca | local | ocsp } { realm realm-name | filename file-name }

Parameters

Parameter Description Value

ca

Deletes a CA certificate.

-

local

Deletes a local certificate.

-

ocsp

Deletes an Online Certificate Status Protocol (OCSP) server's certificate.

-

realm realm-name

Specifies the name of the PKI realm to which a certificate belongs.

The value must be an existing PKI realm name.

filename file-name

Specifies the name of a certificate file.

The value must be an existing certificate file name.

Views

System view

Default Level

3: Management level

Usage Guidelines

Usage Scenario

When the certificate expires or you want to apply for a new certificate, run this command to delete the CA, local, or OCSP server certificate from the memory.

Prerequisites

A PKI realm has been created using the pki realm (system view) command or a certificate has been imported to the memory using the pki import-certificate command.

Precautions

In dual-node hot standby scenarios, the backup node does not support the function of deleting a certificate from the memory.

Example

# Delete the local certificate from the memory.

<sysname> system-view
[sysname] pki delete-certificate local realm abc
Parent Topic: PKI Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >