Learn how to import or replace an HTTPS
certificate on the 9920 device.
Before you begin
- You must have the admin role to
perform this procedure.
- The HTTPS certificate file must be in PEM or PKCS format.
About this task
You can use the following procedure to
import or replace an HTTPS certificate on the ingress controller. Applications
communicating with the 9920 device are secured with TLS. For additional
security, a third-party certificate can replace the default certificates. The
third-party certificate can be shared with client applications to validate the server.
The IP address of the 9920 device should present in the SAN and the common
name of third-party server certificates. 
Note
If an IP address mismatch occurs
between the
9920 device and the server certificate SAN IP,
authentication will fail during TLS connection.
Procedure
Run the command crypto import type
https.
device# crypto import type https protocol scp host <host address> certificate cert.pem key key.pem user <username> password <password
Installing https certificate will result in a momentary delay and may affect active CLI connections - please be patient.
Successfully imported file: cert.pem
Successfully imported file: key.pem
