crypto import type

Imports the authentication certificate for security configuration.

Syntax

crypto import type [ https | syslogca ] protocol [ scp | sftp ] [ host ip-address ] [ certificate cert-file ] [ key key-file ] [ user remote-user ] [ password remote-password ]

no crypto import type [ https | syslogca ]

Parameters

type

https: Specifies an HTTPS certificate.
syslogca: Specifies a Syslogca certificate

host ip-address

Specifies the IPv4 or IPv6 unicast address of the remote server where the file is located.

protocol

scp: Specifies the use of SCP for accessing the certificate file.
sftp: Specifies the use of SFTP for accessing the certificate file.

certificate file-name

Defines the name of the certificate file.

key key-file

Specifies the key file to retrieve.

username

Specifies the name of the remote user that has access to the file.

password user-password

Defines the password for the user name on the host server. The password for a remote user can be up to 64 characters.

Note

As a best practice, do not list the password in the command line for security purposes.

Modes

Exec mode

Usage Guidelines

The no form of the command removes the authentication certificate.

When the no form of the command is used with https type, a new certificate or key pair is regenerated and used with the ingress controller.

This command is available only to users with the admin role.

Examples

The following example imports the certificate key pair using SCP.

device# crypto import type https protocol scp host 10.37.16.211 certificate /root/certMgmt/certificates/ngnpbTestCA_Cert.pem key /root/certMgmt/certificates/ngnpbTestCA.key user root password root123
Installing https certificate will result in a momentary delay and may affect active CLI connections - please be patient.

The following example deletes an HTTPS certificate.

device# no crypto import type https
device#