crypto pki certificate


crypto pki certificate <CERT-NAME>

no crypto pki certificate <CERT-NAME>


Creates a leaf certificate context and changes to the created config-cert-<CERT-NAME> context. If the specified leaf certificate exists, this command changes to the config-cert-<CERT-NAME> context.

The first time the switch starts it creates a self-signed, default leaf certificate called local-cert. This certificate is used by any switch application that does not have an associated leaf certificate.

The no form of this command deletes the specified leaf certificate. The default leaf certificate local-cert cannot be deleted.

Command context



Specifies the name of a leaf certificate. Range: 1 to 32 alphanumeric characters (excluding ").


Administrators or local user group members with execution rights for this command.


Creating leaf certificate context leaf-cert:

switch(config)# crypto pki certificate leaf-cert

Deleting the existing leaf certificate leaf-cert:

switch(config)# no crypto pki certificate leaf-cert
The leaf certificate has associated applications. Deleting the certificate
will make the applications use the default certificate local-cert.
Continue (y/n)? y