Home
System management
Documents under this category provide information about configuring basic system functions and components on SR-series routers. This includes system and interface configuration, as well as licensing.
System Management Guide
This guide describes system security features, SNMP and NETCONF features, and event and accounting logs; the guide also covers basic tasks such as configuring management access filters, passwords, and user profiles.
Public key infrastructure
X.509v3 certificate overview
Local storage

System management
Documents under this category provide information about configuring basic system functions and components on SR-series routers. This includes system and interface configuration, as well as licensing.
- Basic System Configuration Guide
  This guide describes file system management, boot option file (BOF) configuration, basic system management configuration, node timing, and synchronization functions.
- Interface Configuration Guide
  This guide describes how to provision Input/Output Modules (IOMs), XMA Control Modules (XCMs), Media Dependent Adapters (MDAs), XRS Media Adapters (XMAs), connectors, and ports.
- Pay-as-you-Grow Licensing Guide
- Router Configuration Guide
  This guide dscribes logical IP routing interfaces and associated attributes such as IP addresses, as well as IP and MAC-based filtering, Virtual Router Redundancy Protocol (VRRP), and cflowd.
- System Management Guide
  This guide describes system security features, SNMP and NETCONF features, and event and accounting logs; the guide also covers basic tasks such as configuring management access filters, passwords, and user profiles.

Local storage

The SR OS requires the following objects to be stored locally as file:

CA Certificate
CRL
System’s own certificate
System’s own key

All above objects must be imported before they can be used by the SR OS. This is performed by using the admin certificate import command. The import process converts the format of input file to DER, encrypts it and saves it in cf3:/system-pki directory.

The imported file can also be exported as one to use in the specified format by means of the admin certificate export command.

The admin certificate import and admin certificate export command supports following formats:

Certificates can be import/export by using following formats:
- PKCS#12
- PKCS#7 (DER and PEM)
- PEM
- DER
If there are multiple certificates in the file, only the first one is used.
Key pair can be import/export by using following formats:
- PKCS#12 (must along with certificate)
- PEM
- DER
CRL can be import/export by using following formats:
- PKCS#7 (DER and PEM)
- PEM
- DER
PKCS#12 file can be encrypted with a password.

November 20, 2023