re-initialize internal-ca-certificate

In the R81.10.X releases, this command is available starting from the R81.10.00 version.

Description

Initializes internal certificates:

  • Internal Certificate Authority (ICA) certificate

  • Internal VPN certificate

Syntax

re-initialize internal-ca-certificate [host-ip-address <Common Name>] [internal-ca-dn <Certificate DN>] [internal-ca-expiration <Years>] [internal-cert-expiration <Years>]

Parameters

Parameter

Description

host-ip-address

Specifies the Common Name.

Usually, composed of Host Name and Domain Name (for example: myhost.example.com).

internal-ca-dn

Specifies the Certificate DN (for example: O=example,CN=*.example.com).

Must contain at least the organization.

Must not contain spaces.

internal-ca-expiration

Specifies the number of years the internal CA certificate is valid.

internal-cert-expiration

Specifies the number of years the internal VPN certificate is valid.

Example Command

re-initialize internal-ca-certificate internal-ca-dn "CN=SMP,OU=MyCompany,O=MyCompany,CN=*.MyCompany.com" internal-cert-expiration 10