Switching

I am trying to generate a SSL certificate for an EX4200 switch with Junos 9.2, I am using the procedure that I have found at http://www.juniper.net/techpubs/en_US/junos9.2/topics/task/configuration/ex-series-ssl-certificates-generating.html. Where do I run the openssl command from? I can not run it from the switch interface.

Thanks

Paul McLean

Hi Paul,

What sort of error do you see when you try the openssl command?

Thx

-Keith

looks like you need to run it from a BSD shell. You get this shell by default when logging into console if i'm not mistaken. I believe you can also spawn a shell with "start" in operational mode.

Dennis

Running it from the BSD prompt I get "openssl: Command not found."

Running it from  operational mode I get "openssl         unknown command."

Running it from  configuration mode I get "openssl         unknown command."

The switches are running 9.2r2.15

Thanks

Paul McLean

Are you running domestic or worldwide software ?

Don't know if it might be a US/Canada only feature...

Dennis

The software version we are using is jinstall-ex-9.2R2.15-domestic-signed.tgz

Paul 

Update:

OPENSSH is not included onthe switches at this stage, the SSL certificate needs to be generated by a seperate certificate server and then copied to the switches (I have not tested this yet).

Paul 

Generated the SSL certificate on a Linux server (added the -days n command to have a exp date more than 30 days). You can use the certificate on as many switch as you want.

Certificate in installed and tested - you do get an error when access the page as the certificate is generic and not for a specific switch.