08-09-2012 12:57 PM - edited 03-07-2019 08:15 AM
Is this a best pratice to leave these on the switch? I do use ssh to manage the switch but I don't think these are needed for that purpose. Any security concerns?
crypto pki trustpoint TP-self-signed-xxxxxxxxxxxx
!
crypto pki certificate chain TP-self-signed-xxxxxxxxxxx
Solved! Go to Solution.
08-09-2012 02:04 PM
From a security-standpoint, each function that you don't need should be disabled. As you don't need the certificates for SSH you can delete them. If you later decide to use HTTPS then you can add your own enterprise-generated certificate or generate new self-signed certificates.
--
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni
08-09-2012 02:04 PM
From a security-standpoint, each function that you don't need should be disabled. As you don't need the certificates for SSH you can delete them. If you later decide to use HTTPS then you can add your own enterprise-generated certificate or generate new self-signed certificates.
--
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide