auto-enroll
To specify the duration after which the router request for automatic renewal of a PKI certificate from the CA, , use the auto-enroll command in trustpoint configuration mode. To disable the automatic renewal of the certificate after the said period, use the no form of this command.
auto-enroll percentage
Syntax Description
percentage |
Percentage of the certificate validity after which the router will request for a new certificate from the CA. The range is from 1 to 99. |
Command Default
None
Command Modes
Trustpoint configuration
Command History
Release |
Modification |
---|---|
Release 7.5.3 |
This command was introduced. |
Usage Guidelines
This command is applicable only for Cisco IOS XR 64-bit Software.
Task ID
Task ID |
Operations |
---|---|
crypto |
read, write |
Examples
The following example shows how to configure auto renewal of PKI certificate in the router:
Router#configure
Router(config)#crypto ca trustpoint system-trustpoint
Router(config-trustp)#auto-enroll 30
Router(config-trustp)#commit