Displays the secure socket layer (SSL) configuration.
|manufacturing||Shows manufacturer-installed certificates.|
|trusted-ca||Shows trusted CA certificates.|
|ocsp-signature-ca||Shows OCSP signature CA certificates.|
|file_name||Prints specified certificate file.|
|all||Prints all certificates.|
|certificate||Prints the certificate.|
|detail||Displays detailed SSL information.|
This command displays the following information:
- HTTPS port configured. This is the port on which the clients will connect.
- Length of the RSA key (the number of bits used to generate the private key).
- Basic information about the stored certificate.
The show ssl command displays the SSL configuration. The following is sample output from this command:
HTTPS Port Number: 443 Private Key matches with the Public Key in certificate. (or Private key does not match with the Public Key in the certificate) RSA Key Length: 1024 Certificate: Data: Version: 1 (0x0) Serial Number: 6 (0x6) Signature Algorithm: md5WithRSAEncryption Issuer: C=AU, O=CryptSoft Pty Ltd, CN=Test CA (1024 bit) Validity Not Before: Oct 16 22:31:03 2000 GMT Not After : Jan 14 22:31:03 2003 GMT Subject: C=AU, O=CryptSoft Pty Ltd, CN=Server test cert (512 bit) Manufacturing certificate: Not present
This command was first available in the ExtremeXOS 11.2.
The trusted-ca and ocsp-signature-ca options were added in ExtremeXOS 22.1.
This command is available on ExtremeSwitching 5320, 5420, 5520, and 5720 series switches.