Services on the QFX Series - Juniper.net
Services on the QFX Series - Juniper.net
Services on the QFX Series - Juniper.net
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Chapter 6: C<strong>on</strong>figurati<strong>on</strong> Statements for Encrypti<strong>on</strong><br />
certificates<br />
Syntax certificates {<br />
cache-size bytes;<br />
cache-timeout-negative sec<strong>on</strong>ds;<br />
certificati<strong>on</strong>-authority ca-profile-name {<br />
ca-name ca-identity;<br />
crl file-name;<br />
encoding (binary | pem);<br />
enrollment-url url-name;<br />
file certificate-filename;<br />
ldap-url url-name;<br />
}<br />
enrollment-retry attempts;<br />
local certificate-name {<br />
certificate-key-string;<br />
load-key-file URL filename;<br />
}<br />
maximum-certificates number;<br />
path-length certificate-path-length;<br />
}<br />
Hierarchy Level<br />
[edit security]<br />
Release Informati<strong>on</strong> Statement introduced before Junos OS Release 7.4.<br />
Statement introduced in Junos OS Release 9.0 for EX <strong>Series</strong> switches.<br />
Statement introduced in Junos OS Release 11.1 for <strong>the</strong> <strong>QFX</strong> <strong>Series</strong>.<br />
Descripti<strong>on</strong><br />
(Encrypti<strong>on</strong> interface <strong>on</strong> M <strong>Series</strong> and T <strong>Series</strong> routers and EX <strong>Series</strong> switches <strong>on</strong>ly)<br />
C<strong>on</strong>figure <strong>the</strong> digital certificates for IPsec.<br />
The remaining statements are explained separately.<br />
Required Privilege<br />
Level<br />
Related<br />
Documentati<strong>on</strong><br />
admin—To view this statement in <strong>the</strong> c<strong>on</strong>figurati<strong>on</strong>.<br />
admin-c<strong>on</strong>trol—To add this statement to <strong>the</strong> c<strong>on</strong>figurati<strong>on</strong>.<br />
• C<strong>on</strong>figuring Digital Certificates for an ES PIC<br />
Copyright © 2013, <strong>Juniper</strong> Networks, Inc.<br />
45