Services on the QFX Series - Juniper.net
Services on the QFX Series - Juniper.net
Services on the QFX Series - Juniper.net
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
<str<strong>on</strong>g>Services</str<strong>on</strong>g> <strong>on</strong> <strong>the</strong> <strong>QFX</strong> <strong>Series</strong><br />
certificati<strong>on</strong>-authority<br />
Syntax certificati<strong>on</strong>-authority ca-profile-name {<br />
ca-name ca-identity;<br />
crl file-name;<br />
encoding (binary | pem);<br />
enrollment-url url-name;<br />
file certificate-filename;<br />
ldap-url url-name;<br />
}<br />
Hierarchy Level<br />
[edit security certificates]<br />
Release Informati<strong>on</strong> Statement introduced before Junos OS Release 7.4.<br />
Statement introduced in Junos OS Release 9.0 for EX <strong>Series</strong> switches.<br />
Statement introduced in Junos OS Release 11.1 for <strong>the</strong> <strong>QFX</strong> <strong>Series</strong>.<br />
Descripti<strong>on</strong><br />
(Encrypti<strong>on</strong> interface <strong>on</strong> M <strong>Series</strong> and T <strong>Series</strong> routers and EX <strong>Series</strong> switches <strong>on</strong>ly)<br />
C<strong>on</strong>figure a certificate authority profile name.<br />
The remaining statements are explained separately.<br />
Required Privilege<br />
Level<br />
Related<br />
Documentati<strong>on</strong><br />
admin—To view this statement in <strong>the</strong> c<strong>on</strong>figurati<strong>on</strong>.<br />
admin-c<strong>on</strong>trol—To add this statement to <strong>the</strong> c<strong>on</strong>figurati<strong>on</strong><br />
• C<strong>on</strong>figuring Digital Certificates for an ES PIC<br />
crl (Encrypti<strong>on</strong> Interface)<br />
Syntax<br />
crl file-name;<br />
Hierarchy Level<br />
[edit security certificates]<br />
Release Informati<strong>on</strong> Statement introduced before Junos OS Release 7.4.<br />
Statement introduced in Junos OS Release 9.0 for EX <strong>Series</strong> switches.<br />
Statement introduced in Junos OS Release 11.1 for <strong>the</strong> <strong>QFX</strong> <strong>Series</strong>.<br />
Descripti<strong>on</strong><br />
(Encrypti<strong>on</strong> interface <strong>on</strong> M <strong>Series</strong> and T <strong>Series</strong> routers and EX <strong>Series</strong> switches <strong>on</strong>ly)<br />
C<strong>on</strong>figure <strong>the</strong> certificate revocati<strong>on</strong> list (CRL). A CRL is a time-stamped list identifying<br />
revoked certificates, which is signed by a CA and made available to <strong>the</strong> participating<br />
IPsec peers <strong>on</strong> a regular periodic basis.<br />
Opti<strong>on</strong>s<br />
file-name—Specify <strong>the</strong> file from which to read <strong>the</strong> CRL.<br />
Required Privilege<br />
Level<br />
Related<br />
Documentati<strong>on</strong><br />
admin—To view this statement in <strong>the</strong> c<strong>on</strong>figurati<strong>on</strong>.<br />
admin-c<strong>on</strong>trol—To add this statement to <strong>the</strong> c<strong>on</strong>figurati<strong>on</strong><br />
• C<strong>on</strong>figuring Digital Certificates for an ES PIC<br />
46<br />
Copyright © 2013, <strong>Juniper</strong> Networks, Inc.