erase root-ca

Last Updated : Jun 04, 2021 |

This command informs the gateway to erase (delete) the Root-CA certificate referenced by <index>.

Syntax

erase root-ca <app> <index>

Parameters

Parameter

Description

Possible Values

Default Value

app

Application name. The enumerated choices are:

  • h248reg (specifies the TLS usage over the control channel to Communication Manager)

  • sla (specifies the TLS usage over the link to the host SLA Monitor app)

  • syslog (specifies the TLS usage over the syslog connection to a log server)

  • web (specifies the TLS usage for the HTTPS connections to web servers which are used for downloading and uploading of files). This option also erases the trust anchor files.

  • h248reg

  • sla

  • syslog

  • web

index

The “index” of each line above can be used as a “handle” to identify the certificate. If one desires more detail about a certificate, supply the index of the certificate on the command line.

  • An integer: The index of the certificate to copy as displayed in the show root-ca command output for the source appA

  • All: When selected, the gateway will copy all the certificates present for the source appA and add them to the store for the destination appB
Note:

The erased trust anchor files will be restored after the reboot. To permanently disable the trust anchor files, see Trust-anchors.

User level

read-write

Context

general

Example