By default, Data ONTAP uses all of your storage system's root
certificates for certificate authentication. You can specify that Data
ONTAP should use only a subset of these root certificates for
certificate authentication.
Step
- At the storage system command line, enter the following
command:
ipsec cert set -r
file_names
file_names is a space-delimited list of 1 to 15
names of files containing root certificates that you downloaded and
installed previously. Data ONTAP uses this subset of root
certificates for certificate authentication, ignoring all other
root certificates.
Note: To remove root certificates from this subset, repeat this step,
specifying a new subset.