Skip to main content
ONTAP commands
A newer release of this product is available.

system service-processor api-service enable-installed-certificates

Suggest changes
PDFs

Enable user-installed certificates for the service processor API service

Availability: This command is available to cluster and Vserver administrators at the admin privilege level.

Description

This command enables user-installed certificates for secure communication with the service processor. Use the security certificate install command to install client, server and CA certificates.

Parameters

-vserver <Vserver Name> - Vserver

Use this parameter to specify the Vserver on which certificates are installed.

-server-cert <text> - Name of the Server Certificate

Use this parameter to specify the unique name of the server certificate.

-client-cert <text> - Name of the Client Certificate

Use this parameter to specify the unique name of the client certificate.

-rootca-cert <text> - Names of the Root CA Certificates

Use this parameter to specify the unique names of server-ca or client-ca certificate.

Examples

The following example installs server, client and rootca certificates and then enables those certificates for secure communication with the service processor.

cluster1::> security certificate install -vserver cluster1 -type server
cluster1::> security certificate install -vserver cluster1 -type client
cluster1::> security certificate install -vserver cluster1 -type server-ca
cluster1::> security certificate show-user-installed
Vserver    Serial Number   Certificate Name                       Type
---------- --------------- -------------------------------------- ------------
cluster1  1533F133482E800F
                           xxx-ca                                 server-ca
    Certificate Authority: xxx-ca
          Expiration Date: Sat Jun 01 05:11:41 2019

cluster1  1533F273AA311FDB
                           xxx-client                             client
    Certificate Authority: xxx-ca
          Expiration Date: Fri May 31 05:34:37 2019

cluster1  1533F1B321E55242
                           xxx-server                              server
    Certificate Authority: xxx-ca
          Expiration Date: Fri May 31 05:20:50 2019

cluster1::> system service-processor api-service enable-installed-certificates -vserver cluster1  -server-cert xxx-server -client-cert xxx-client  -rootca-cert xxx-ca