Wireless Access

last person joined: yesterday 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Delete Server Cert on MM AOS 8.3

This thread has been viewed 18 times

  • 1.  Delete Server Cert on MM AOS 8.3

    Posted Jul 17, 2018 02:42 AM

    Hi,

    i uploaded my Web "Server" Cert on a new MM but it isn't successfull. It is listed in the CLI output but not on the 8.3 GUI of the mm. Now i wan't to delete them and uploaded it again without any special characters. Does anyone know the command to delete them in the CLI ?

    Thanks for Feedback!



  • 2.  RE: Delete Server Cert on MM AOS 8.3
    Best Answer

    EMPLOYEE
    Posted Jul 17, 2018 03:38 AM

    The Command is "no crypto-local pki ServerCert <Cert-Name>"


    You have to apply this command at the appropriate level of hierarchy you imported the certificate.

     

    Example Below:
    I imported the certificate at the /md level.
    (ArubaMM-VA_1) [mynode] #
    (ArubaMM-VA_1) [mynode] #show configuration node-hierarchy

    Default-node is not configured. Autopark is disabled.

    Configuration node hierarchy
    ----------------------------
    Config Node Type Name
    ----------- ---- ----
    / System
    /md System
    /md/Campus-A Group
    /md/Campus-A/00:0b:86:da:df:80 Device Aruba7010-178
    /md/Campus-A/00:0b:86:df:27:20 Device Aruba7010-179
    /md/Campus-A/20:4c:03:15:b9:9c Device Aruba7010-177
    /mm System
    /mm/mynode System
    (ArubaMM-VA_1) [mynode] #
    (ArubaMM-VA_1) [mynode] #
    (ArubaMM-VA_1) [mynode] #cd /md/Campus-A/00:0b:86:da:df:80
    (ArubaMM-VA_1) [00:0b:86:da:df:80] #
    (ArubaMM-VA_1) [00:0b:86:da:df:80] #show crypto pki serverCert

    Certificates of All Nodes
    -------------------------
    Name Expired
    -------------- -------
    Controller No                           //My Cert Name is "Controller"
    (ArubaMM-VA_1) [00:0b:86:da:df:80] #
    (ArubaMM-VA_1) [00:0b:86:da:df:80] #
    (ArubaMM-VA_1) [00:0b:86:da:df:80] #cd /md
    (ArubaMM-VA_1) [md] #
    (ArubaMM-VA_1) [md] #configure terminal
    Enter Configuration commands, one per line. End with CNTL/Z

    (ArubaMM-VA_1) [md] (config) #no crypto-local
    (ArubaMM-VA_1) [md] (config) #no crypto-local pki ServerCert Controller
    (ArubaMM-VA_1) ^[md] (config) #
    (ArubaMM-VA_1) ^[md] (config) #
    (ArubaMM-VA_1) ^[md] (config) #write memory

    Saving Configuration...

    Partial configuration for /md
    ------------------------------------
    Contents of : /flash/ccm/partial/198/p=md.cfg
    [FILE_INFO] /sc 198

    no crypto-local pki ServerCert Controller

    Partial configuration for /md/Campus-A
    ------------------------------------
    Contents of : /flash/ccm/partial/198/p=md=Campus-A.cfg
    [FILE_INFO] /sc 198

    no crypto-local pki ServerCert Controller

    Partial configuration for /md/Campus-A/00:0b:86:da:df:80
    ------------------------------------
    Contents of : /flash/ccm/partial/198/p=md=Campus-A=00:0b:86:da:df:80.cfg
    [FILE_INFO] /sc 198

    no crypto-local pki ServerCert Controller

    Partial configuration for /md/Campus-A/00:0b:86:df:27:20
    ------------------------------------
    Contents of : /flash/ccm/partial/198/p=md=Campus-A=00:0b:86:df:27:20.cfg
    [FILE_INFO] /sc 198

    no crypto-local pki ServerCert Controller

    Partial configuration for /md/Campus-A/20:4c:03:15:b9:9c
    ------------------------------------
    Contents of : /flash/ccm/partial/198/p=md=Campus-A=20:4c:03:15:b9:9c.cfg
    [FILE_INFO] /sc 198

    no crypto-local pki ServerCert Controller
    (ArubaMM-VA_1) [md] (config) #

     

    Regards,

    Kapil

     



  • 3.  RE: Delete Server Cert on MM AOS 8.3

    Posted Jul 17, 2018 06:11 AM

    Hi,

    as i uplaoded a new cert with a name up to 32 Chars it is working. The old ones with longer names vanished automatically. And as you decribed it works with the no statement to delete the valid ones! Thanks !