Skip to main content

Certificate management commands for the controller in the management domain

A certificate authority (CA) is a trusted entity that issues electronic documents, called digital certificates, for Internet security. These certificates identify website owners, which allows for secure connections between clients and servers.

  • Generate web server Certificate Signing Request (CSR)
    The save controller arrayManagementCSR command generates a Certificate Signing Request (CSR) for the controller.
  • Install server signed certificate
    The download controller arrayManagementServerCertificate command installs the server certificate on the controller.
  • Install root/intermediate CA certificates
    The download controller caCertificate command installs the root/intermediate CA certificates on the controllers' web servers to validate the web server signed certificate.
  • Install trusted CA certificates
    The download controller trustedCertificate command installs the trusted CA certificates on the controllers' web servers to validate the LDAP server signed certificate.
  • Remove installed trusted CA certificates
    The delete storageArray trustedCertificate command removes the specified user installed CA certificates from the array's web servers.
  • Remove installed root/intermediate CA certificates
    The delete controller caCertificate command removes the installed root/intermediate CA certificate from the specified controller.
  • Reset installed signed certificate
    The reset controller arrayManagementSignedCertificate command resets the installed signed certificate and root/intermediate certificates on the controller. All root and intermediate certificates as well as any signed certificates will be replaced by a single self-signed certificate.
  • Retrieve installed CA certificates
    The save controller caCertificate command retrieves the installed CA certificates from the specified controller. Included in the retrieved certificates are any requested CA certificates from the controller's web server.
  • Retrieve installed server certificate
    The save controller arrayManagementSignedCertificate command retrieves the installed server certificate for the controller so you can view certificate details.
  • Retrieve installed trusted CA certificates
    The save storageArray trustedCertificate command retrieves the installed trusted CA certificates for the array. Included in the retrieved files are any requested CA certificates from the array's web servers.
  • Set certificate revocation check settings
    The set storageArray revocationCheckSettings command allows you to enable or disable revocation checking, and configure an Online Certificate Status Protocol (OCSP) server.
  • Show certificate revocation check settings
    The show storageArray revocationCheckSettings command allows you to view the certificate revocation settings for the storage array.
  • Show installed root/intermediate CA certificates summary
    The show controller caCertificate command displays the installed CA certificates summary from the specified controller. This command is useful to use before performing the delete controller caCertificate command so that you know the alias names of the certificates to delete.
  • Show installed trusted CA certificates summary
    The show storageArray trustedCertificate summary command displays the trusted installed CA certificates summary from the array. This command is useful to use before performing the delete storageArray trustedCertificate command so that you know the alias names of the certificates to delete.
  • Show signed certificate
    The show controller arrayManagementSignedCertificate summary command displays the current signed certificate summary from the specified controller.
  • Start OCSP server URL test
    The start storageArray ocspResponderUrl test command checks for an open connection to the specified URL of the Online Certificate Status Protocol (OCSP) server.