[Contents] [Prev] [Next] [Index] [Report an Error]

Deleting a Digital Certificate

You can delete digital certificates using the CLI operational mode only. To delete the certificate:

  1. Enter the CLI operational mode.
  2. Perform the tasks described in Table 38.
  3. If you are finished configuring the router, commit the configuration.

Table 38: Deleting a Digital Certificate on a Services Router

Deleting Local Certificates from the Cache

Deletes a local certificate from the Services Router.

  • all—All local certificates associated with the service set.
  • local-id—Certificates matching the local ID.

    If you specify local-id, include one of the following variables:

    • domain-name—Specifies the fully qualified domain name.
    • ip-address—Specifies the IP address used to obtain the certificate.
    • id-value id-value—Specifies any other value used to identify the certificate.

To delete all local certificates from the cache, enter

clear services ipsec-vpn certificates service-set service-set-name all

To delete only specific local certificates, enter

clear services ipsec-vpn certificates service-set service-set-name local-id id-type domain-name

Deleting Remote Certificates from the Cache

Deletes a remote certificate from the Services Router.

  • all—Deletes all remote certificates associated with the service set.
  • remote-id—Specifies all certificates matching the remote ID.

    If you specify remote-id, include one of the following variables:

    • domain-name—Fully qualified domain name.
    • ip-address—IP address used to obtain the certificate.
    • id-value id-value—Other values used to identify the certificate.

To delete all remote certificates from the cache, enter

clear services ipsec-vpn certificates service-set service-set-name all

To delete only specific remote certificates, enter

clear services ipsec-vpn certificates remote-id id-type domain-name


[Contents] [Prev] [Next] [Index] [Report an Error]