Hide Navigation Pane
Show Navigation Pane
Feedback
Download
SHA1
Adding IDP SSL Keys and Associated Servers
When you are installing a key, you can password protect the key and also associate it to a server.
To install a Privacy-Enhanced Mail (PEM) key, use the following CLI command:
user@host> request security idp ssl-inspection key
add <key-name> [file <file-path>] server <server-ip>
[password <password-string>]
 | Note: In a two-node SRX cluster, the key has to be manually copied over to both Node 0 and Node 1 at the same location for the request command to be successful. |
You can also associate the key with a server at a later time by using the add server CLI command. A server can be associated with only one key. To associate a server to the installed key, use the following CLI command:
user@host> request security idp ssl-inspection key
add <key-name> server <server-ip>
| Note: The maximum key name length is 32 bytes, including the ending “\0”. |
Related Topics
- Junos OS Feature Support Reference for SRX Series and J Series Devices
- Understanding IDP SSL Server Key Management and Policy Configuration
- Displaying IDP SSL Keys and Associated Servers
- Deleting IDP SSL Keys and Associated Servers
