View the Certificate Configuration on Fabric IPsec Gateway VM

About this task

Use this procedure to view the certificate configuration for the VM.

Procedure

  1. Enter Fabric IPsec Gateway Configuration mode:

    enable

    virtual-service WORD<1-128> console

    Note

    Note

    Type CTRL+Y to exit the console.

  2. Display all configured entries:

    show running-config

  3. Display the CA trustpoint configuration:

    show certificate-config ca-trustpoint [<ca-label>]

  4. Display the subject-related configuration:

    show certificate-config subject [<subject-label>]

Examples

Switch:1>enable
Switch:1#virtual-service FIGW console
FIGW>show certificate-config ca-trustpoint
certificate {
    ca-trustpoint {
        ca-label a;
        caname subCaVpn;
        ca-url http://10.2.38.35:8080/ejbca/publicweb/apply/scep/test/pkiclient.exe;
        get-method post;
    }
Switch:1>enable
Switch:1#virtual-service FIGW console
FIGW>show certificate-config subject 
certificate {
    subject {
        subject-label fig;
        DN CN=FIGW;
        key-label gigi;
    }
    subject {
        subject-label figv;
        DN CN=figvpn;
    }