Importing an LDAP CA certificate

The following example imports the LDAP CA certificate from a remote server to a device using secure copy (SCP).

  1. In privileged EXEC mode, enter configure terminal to change to global configuration mode.
    device# configure terminal
    Entering configuration mode terminal
  2. Enter crypto ca import ldapca with the specified parameters.
    device# crypto ca import ldapca directory /usr/ldapcacert file cacert.pem protocol SCP host 10.23.24.56 user admin password *****
  3. Verify the import by entering show crypto ca certificates.
    device# show crypto ca certificates
    Trustpoint: t1
    certificate:
    SHA1 Fingerprint=B7:5B:DB:9B:24:69:40:39:36:66:4D:59:2C:69:83:8E:93:CA:23:0C
    Subject: C=US, ST=CA, L=SJ, O=BRC, OU=SFI, CN=10:00:00:27:F8:87:70:29
    Issuer: C=US, ST=CA, L=SJ, O=BR, OU=SF, CN=SOUND/emailAddress=sravi
    Not Before: Oct 6 23:44:27 2014 GMT
    Not After : Oct 6 23:44:27 2015 GMT
    purposes: sslserver
    CA certificate:
    SHA1 Fingerprint=76:5B:D4:2C:CB:54:FE:6B:C5:E0:E3:FD:11:B0:88:70:80:12:C6:63
    Subject: C=US, ST=CA, L=SJ, O=BR, OU=SF, CN=SOUND/emailAddress=sravi
    Issuer: C=US, ST=CA, L=SJ, O=BR, OU=SF, CN=SOUND/emailAddress=sravi
    Not Before: Sep 19 20:56:49 2014 GMT
    Not After : Oct 19 20:56:49 2014 GMT
    purposes: sslserver