Chapter 3
Configuring SSL Certificates and Keys
Note
Associating Diffie-Hellman Parameters with a File
Note
OL-5655-01
To remove the association with the file, enter:
(config) # no ssl associate dsakey mydsakey1
The no form of the command will not function if the associated DSA key pair is
in use by an active SSL proxy list.
To associate a Diffie-Hellman name with an imported or generated
Diffie-Hellman parameter file, use the ssl associate dhparam command. Use the
no form of the command to remove the association to the file.
The syntax for this command is:
ssl associate dhparam paramname filename
The variables are:
paramname - The name of the Diffie-Hellman parameter association. Enter
•
an unquoted text string with a maximum of 31 characters.
filename - The name of the file containing the Diffie-Hellman parameters.
•
Enter a maximum of 128 characters. To see a list of imported or generated
Diffie-Hellman files, use the ssl associate dhparam filename ? command.
For example, to associate the Diffie-Hellman filename mydhparam1 with the
imported dhparams.pem, enter:
(config) # ssl associate dhparam mydhparam1 dhparams.pem
To remove the association with the file, enter:
(config) # no ssl associate dhparam mydhparam1
The no form of the command will not function if the associated Diffie-Hellman
parameter list is in use by an active SSL proxy list.
Associating Certificate and Private Key Files with Names
Cisco Content Services Switch SSL Configuration Guide
3-19