Configure the Subject Identity on Fabric IPsec Gateway VM

About this task

Use this procedure to configure the subject parameters to identify the device.

Procedure

  1. Enter Fabric IPsec Gateway Configuration mode:

    enable

    virtual-service WORD<1-128> console

    Note

    Note

    Type CTRL+Y to exit the console.

  2. Configure the distinguished name of the device:

    set certificate subject <subject-label> DN <name>

  3. Optional: Configure the name of the generated key-pair:

    set certificate subject <subject-label> key-label <key-label>

Example

Switch:1>enable
Switch:1#virtual-service FIGW console
FIGW>set certificate subject ExtremeLab DN "CN=subca5, OU=Test, O=Extreme, L=Town, ST=State, E=email@extremenetworks.com"
FIGW>set certificate subject ExtremeLab key-label key1

Variable Definitions

The following table defines parameters for the set certificate subject command.

Variable

Value

DN <name>

Specifies the distinguished name. You can create a comma-separated list.

key-label <key-label>

Specifies the key name of the generated key pair. This parameter is optional. If you do not configure one, the switch generates one the same as the subject-label.

<subject-label>

Specifies the subject identity. You cannot use the following special characters:

  • question mark (?)

  • backslash (\)

  • ampersand (&)

  • less than (<)

  • greater than (>)

  • pound (#)