Establishing a Public Key Infrastructure

To create a PKI:

  1. Initialize a new PKI by executing the ovs-pki init command on the PKI host.
    The following files are created:
    File Name Usage
    controllerca/private/cakey.pem Not required by switches or controllers.
    switchca/cacert.pem Required by controller to authenticate valid switches.
    switchca/cakey.pem Not required by switches or controllers.
    controllerca/cacert.pem Required by switches to authenticate controllers.