Delete Certificate - Cisco Nexus 7000 Series Command Reference Manual

D Commands

delete certificate

To delete the identity certificate, use the delete certificate command.
delete certificate [force]
Syntax Description
force
Command Default
None
Command Modes
Trustpoint configuration
Command History
Release
4.1(2)
Usage Guidelines
Use the delete certificate command to delete the identity certificate obtained from the trustpoint CA when
the identity certificate expires or the corresponding key pair is compromised. Applications on the device are
left without any identity certificate to use after you delete the last or the only identity certificate present. The
Cisco NX-OS software generates an error message if the certificate being deleted is the only certificate present
or is the last identity certificate in a chain. You can use the optional force keyword to remove the certificate.
The trustpoint configuration, certificates, and key pair configurations are persistent only after saving to the
startup configuration. Deletions become persistent only after you save the running configuration to the startup
configuration.
Enter the copy running-config startup-config command to make the certificate and key pair deletions
persistent.
This command does not require a license.
Examples
This example shows how to delete the identity certificate:
switch# configure terminal
switch(config)# crypto ca trustpoint admin-ca
switch(config-trustpoint)# delete certificate
This example shows how to force the deletion of the identity certificate:
switch# configure terminal
switch(config)# crypto ca trustpoint admin-ca
switch(config-trustpoint)# delete certificate force
(Optional) Forces the deletion of the identity
certificate.
Modification
This command was introduced.
Cisco Nexus 7000 Series Security Command Reference
delete certificate
221