Chapter 2
Commands for the Catalyst 6500 Series SSL Services Module
crypto pki export pem
To export privacy-enhanced mail (PEM) files from the SSL Services Module, use the crypto pki export
pem command.
Syntax Description
trustpoint-label
terminal
des
3des
url url
pass-phrase
Defaults
This command has no default settings.
Command Modes
Global configuration
Command History
Release
SSL Services Module
Release 1.2(1)
SSL Services Module
Release 3.1(1)
Usage Guidelines
The pass_phrase can be any phrase including spaces and punctuation except for the question mark (?),
which has a special meaning to the Cisco IOS parser.
Pass-phrase protection associates a pass phrase with the key. The pass phrase is used to encrypt the key
when it is exported. When this key is imported, you must enter the same pass phrase to decrypt it.
A key that is marked as unexportable cannot be exported.
OL-9105-01
crypto pki export trustpoint_label pem {terminal {des | 3des} {url url}} pass_phrase
Name of the trustpoint.
Displays the request on the terminal.
Specifies the 56-bit DES-CBC encryption algorithm.
Specifies the 168-bit DES (3DES) encryption algorithm.
Specifies the URL location. Valid values are as follows:
ftp:—Exports to the FTP: file system
•
null:—Exports to the NULL: file system
•
•
nvram:—Exports to the NVRAM: file system
•
rcp:—Exports to the RCP: file system
•
scp:—Exports to the SCP: file system
system:—Exports to the system: file system
•
tftp:—Exports to the TFTP: file system
•
Pass phrase that is used to protect the private key.
Modification
Support for this command was introduced on the Catalyst 6500 series
switches.
The syntax for this command changed from crypto ca to crypto pki.
Catalyst 6500 Series Switch SSL Services Module Command Reference
crypto pki export pem
2-7