show ssl

show ssl {[trusted-ca | ocsp-signature-ca] [file_name | all]} {manufacturing}{certificate | detail}

Description

Displays the secure socket layer (SSL) configuration.

Syntax Description

manufacturing Shows manufacturer-installed certificates.
trusted-ca Shows trusted CA certificates.
ocsp-signature-ca Shows OCSP signature CA certificates.
file_name Prints specified certificate file.
all Prints all certificates.
certificate Prints the certificate.
detail Displays detailed SSL information.

Default

N/A.

Usage Guidelines

This command displays the following information:
  • HTTPS port configured. This is the port on which the clients will connect.
  • Length of the RSA key (the number of bits used to generate the private key).
  • Basic information about the stored certificate.

Example

The show ssl command displays the SSL configuration. The following is sample output from this command:

HTTPS Port Number: 443
Private Key matches with the Public Key in certificate. (or Private key does not match with the Public Key in the certificate)
RSA Key Length: 1024
Certificate:
Data:
Version: 1 (0x0)
Serial Number: 6 (0x6)
Signature Algorithm: md5WithRSAEncryption
Issuer: C=AU, O=CryptSoft Pty Ltd, CN=Test CA (1024 bit)
Validity
Not Before: Oct 16 22:31:03 2000 GMT
Not After : Jan 14 22:31:03 2003 GMT
Subject: C=AU, O=CryptSoft Pty Ltd, CN=Server test cert (512 bit)
Manufacturing certificate: Not present

History

This command was first available in the ExtremeXOS 11.2.

The trusted-ca and ocsp-signature-ca options were added in ExtremeXOS 22.1.

Platform Availability

This command is available on ExtremeSwitching 5320, 5420, 5520, and 5720 series switches.