D-Link DWS-1008 Informations techniques télécharger pdf (Page 296)

295

DWS-1008 CLI Reference Guide

D-Link Systems, Inc.

Cryptography Commands

crypto otp

Sets a one-time password (OTP) for use with the crypto pkcs12 command.

Syntax: crypto otp {eap} one-time-password

eap Creates a one-time password for installing a PKCS #12 object

ﬁle for an EAP certiﬁcate and key pair - and optionally the

certiﬁcate authority’s own certiﬁcate - to authenticate the switch

to 802.1X supplicants (clients).

one-time-password Password of at least 1 alphanumeric character, with no spaces,

for clients other than Microsoft Windows clients. The password

must be the same as the password protecting the PKCS #12

object ﬁle.

Note: On a switch that handles communications to and

from Microsoft Windows clients, use a one-time password of

31 characters or fewer.

The following characters cannot be used as part of the one-time

password of a PKCS #12 ﬁle:

• Quotation marks (“ ”)

• Question mark (?)

• Ampersand (&)

Defaults: None Access: Enabled

Usage: The password allows the public-private key pair and certiﬁcate to be installed

together from the same PKCS #12 object ﬁle. MSS erases the one-time password

after processing the crypto pkcs12 command or when you reboot the switch.

D-Link recommends that you create a password that is memorable to you but is not

subject to easy guesses or a dictionary attack. For best results, create a password of

alphanumeric uppercase and lowercase characters.

Examples: The following command creates the one-time password hap9iN#ss for installing

an EAP certiﬁcate and key pair:

DWS-1008# crypto generate otp eap hap9iN#ss

OTP set

1 2 ... 291 292 293 294 295 296 297 298 299 300 301 ... 405 406

Pas de commentaire

D-Link DWS-1008 Informations techniques Page 296