< Home

pki realm (IKE peer view)

Function

The pki realm command binds a public key infrastructure (PKI) realm to an IKE peer.

The undo pki realm command unbinds a PKI realm from an IKE peer.

By default, no PKI realm is bound to an IKE peer.

Format

pki realm realm-name

undo pki realm

Parameters

Parameter

Description

Value

realm-name

Specifies the name of a PKI realm.

The PKI realm must already exist.

Views

IKE peer view

Default Level

2: Configuration level

Usage Guidelines

Usage Scenario

A PKI realm is a set of identity information required when a PKI entity enrolls a certificate.

After a PKI realm is bound to an IKE peer, the IKE peer can obtain the CA certificate and local certificate based on the PKI realm configuration.

Prerequisites

A PKI realm has been created using the pki realm command in the system view. And the CA certificate and local certificate have been imported in the PKI realm.

Example

# Bind the PKI realm test to the IKE peer.

<sysname> system-view
[sysname] pki realm test
[sysname-pki-realm-test] quit
[sysname] ike peer huawei
[sysname-ike-peer-huawei] pki realm test
Parent Topic: IPSec Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >