Can't remove certificate object
Hello community,
I would like to remove an expired certificate on my
I would like to remove an expired certificate on my
USG FLEX 50W (USG20W-VPN) but when doing so over GUI I get the following message:
"Wrong CLI command, device timeout or device logout."
Trying to remove it using CLI I get this:
"Router(config)# no ca category local <certificate name>
"Wrong CLI command, device timeout or device logout."
Trying to remove it using CLI I get this:
"Router(config)# no ca category local <certificate name>
% (after 'local'): Parse error
retval = -1
ERROR: Parse error/command not found!"
What do I need to do to finally get rid of it?
Thank you.
Regards
Firmware version: 5.21(ABAR.0)
What do I need to do to finally get rid of it?
Thank you.
Regards
Firmware version: 5.21(ABAR.0)
0
Accepted Solution
-
Hi @alehzn
You can login to device WebGUI to backup(download) the certificates that you needed.
And then use CLI command to flush all of certificates on your device.
System will regenerate system default certificates and flush others.
Router# debug _ca regenerate
0
All Replies
-
Hi @alehzn,Thanks for your feedback.We will check on this problem and get back to you when there is any progress.Thank you.James0
-
Hi @alehzn,
Before input the command "no ca category local [certificate_name]", we should input "configure terminal" first to entering Configure mode.
Here are screenshots for your reference.
1. "show ca category local" >> Check what certificates we have, here I take "0311james" for example.
2. Input "configure terminal" for entering configure mode, and then input "no ca category local 0311james" to remove the certificate.
3. Then we can see there is no more "0311james"
Please try this solution, I'm looking forward to the result, thank you.
James.
0 -
Hello James,
thank you for the instruction which I have already followed before.
Please see screenshot attached. You will notice that it (still) does not work.
Best0 -
Hi @alehzn
You can login to device WebGUI to backup(download) the certificates that you needed.
And then use CLI command to flush all of certificates on your device.
System will regenerate system default certificates and flush others.
Router# debug _ca regenerate
0 -
Hello @Zyxel_Stanley
The command did the trick. Certificate is finally gone. Thank you for your great support!0 -
Hi @BrowB
Does your certificate was expired on your device and it is unable to remove from WebGUI or CLI?
If not, can you export the certificate and share it to us?0
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 146 Nebula Ideas
- 96 Nebula Status and Incidents
- 5.7K Security
- 262 USG FLEX H Series
- 271 Security Ideas
- 1.4K Switch
- 74 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.4K Consumer Product
- 249 Service & License
- 387 News and Release
- 84 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.5K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 85 About Community
- 73 Security Highlight