< Home

pki rsa local-key-pair match-slave

Function

The pki rsa local-key-pair match-slave command checks whether the RSA key pairs on the active and standby devices are the same.

Format

pki rsa local-key-pair match-slave [ all-sys ]

Parameters

Parameter Description Value

all-sys

Checks whether RSA key pairs in all systems on the active and standby devices are the same. If this parameter is not specified, the system checks whether the RSA key pairs in the current system on the active and standby devices are the same.

-

Views

System view

Default Level

3: Management level

Usage Guidelines

Usage Scenario

In the dual-system hot backup scenarios, the RSA key pairs on the active and standby devices must be the same to ensure the proper running of certificate services in case of an active/standby switchover. Run this command on the active device to obtain all the RSA key pairs from the standby device and to check whether the RSA key pairs on the active and standby devices are the same. If they are not the same, run the pki rsa local-key-pair backup command to back up all the RSA key pairs in a batch from the active device to the standby device.

Precautions

This command can be executed only on the active device in the dual-system hot backup deployment.

Example

# Check whether the RSA key pairs on the active and standby devices are the same.

<sysname> system-view
[sysname] pki rsa local-key-pair match-slave
 Info: Obtaining RSA key pair from the standby device, please wait.   
 Info: All RSA key pairs are the same.
Parent Topic: PKI Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >