Home
System management
Documents under this category provide information about configuring basic system functions and components on SR-series routers. This includes system and interface configuration, as well as licensing.
System Management Guide
This guide describes system security features, SNMP and NETCONF features, and event and accounting logs; the guide also covers basic tasks such as configuring management access filters, passwords, and user profiles.
Public key infrastructure
X.509v3 certificate overview
Certificate/CRL expiration warning

System management
Documents under this category provide information about configuring basic system functions and components on SR-series routers. This includes system and interface configuration, as well as licensing.
- Basic System Configuration Guide
  This guide describes file system management, boot option file (BOF) configuration, basic system management configuration, node timing, and synchronization functions.
- Interface Configuration Guide
  This guide describes how to provision Input/Output Modules (IOMs), XMA Control Modules (XCMs), Media Dependent Adapters (MDAs), XRS Media Adapters (XMAs), connectors, and ports.
- Pay-as-you-Grow Licensing Guide
- Router Configuration Guide
  This guide dscribes logical IP routing interfaces and associated attributes such as IP addresses, as well as IP and MAC-based filtering, Virtual Router Redundancy Protocol (VRRP), and cflowd.
- System Management Guide
  This guide describes system security features, SNMP and NETCONF features, and event and accounting logs; the guide also covers basic tasks such as configuring management access filters, passwords, and user profiles.

Certificate/CRL expiration warning

The system can optionally generate a warning message before a certificate or a CRL expires. The amount of time before expiration is configurable via two system-wide CLI commands (certificate-expiration-warning and crl-expiration-warning). The warning messages can also be optionally repeated at a configured interval. For details of the warning messages, refer to the corresponding command descriptions.

If a configured EE certificate expires, the system does not bring down an established ipsec-tunnel/ipsec-gw down, however future certificate authentication fails.

If a CA certificate expires, the system brings the ca-profile operationally down. This does not affect established tunnels, however future certificate authentication that uses the ca-profile fails.

November 20, 2023

Certificate/CRL expiration warning

For consumers

For business

Innovation

About us

Contact and support