SECUR Exam Cram™ 2 (Exam 642-501)

Maintaining and Monitoring the CA

If you need to obtain the latest CRL from a CA that does not support an RA, you would issue the following command:

R1 (config)# crypto ca crl request MYCA

If your RSA keys have become compromised, you need to delete the local keys on the router. To delete the local router's RSA keys, issue the following command:

R1 (config)# crypto key zeroize rsa

You use the crypto key zeroize rsa command to remove all old keys from a router.

If your IPSec peer has obtained new RSA keys, you need to delete your local copy of their public keys. To delete a peer's RSA public key, issue the following commands:

 R1 (config)# crypto ...

Get SECUR Exam Cram™ 2 (Exam 642-501) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

SECUR Exam Cram™ 2 (Exam 642-501) by Raman Sud, Ken Edelman

Maintaining and Monitoring the CA

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly