CISCO-PKI-PARTICIPATION-MIB Table View
Table-centric layout grouping table, row, and column objects.
Tables
2
Rows
2
Columns
32
cpkiRSAKeyPairTable
table.1.3.6.1.4.1.9.9.505.1.1.1
·
1 row entry
·
7 columns
A list of RSA key-pair entries.
The RSA key-pair entry. The entry specifies the key-pair
name, size, whether it is exportable and the filename
where the key-pair is stored. Each entry corresponds
to a RSA key-pair generated internally in the device or…
name, size, whether it is exportable and the filename
where the key-pair is stored. Each entry corresponds
to a RSA key-pair generated internally in the device or…
Indexes
cpkiRSAKeyPairName
| Column | Syntax | OID | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cpkiRSAKeyPairName
The unique name or label of key-pair.
|
OctetString Constraints: range: 1-64 |
.1.3.6.1.4.1.9.9.505.1.1.1.1.1 |
||||||||||||
|
cpkiRSAKeyPairId
A unique identification nubmer of the RSA key-pair.
This is included to support ordered lists of RSA key-pairs when needed. One such scenario where such ordered list may be needed is for per application configuration of… |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.505.1.1.1.1.2 |
||||||||||||
|
cpkiRSAKeyPairSize
The size of the key.
The following modulus sizes are defined: 512-bit, 768-bit, 1024-bit, 1536-bit and 2048-bit. Once created, the size cannot be changed. After key-pair has been deleted through row delet… |
Enumerationr/w Enumerated Values:
|
.1.3.6.1.4.1.9.9.505.1.1.1.1.3 |
||||||||||||
|
cpkiRSAPvtKeyFileName
The name of the file storing the RSA private key.
This filename is automatically generated from the key-pair name. It is a unix style '/' seperated string representing the absolute path of the file in the file system of… |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.1.1.4 |
||||||||||||
|
cpkiRSAKeyPairExportable
The key-pair is exportable through the 'exportpkcs12'
PKI support action. Once created, the exportable flag value cannot be changed. After key-pair has been deleted through row deletion, the entry can be created again … |
SNMPv2-TCTruthValuer/w Textual Convention: SNMPv2-TCTruthValue EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.1.1.5 |
||||||||||||
|
cpkiRSAKeyPairStorageType
The storage type for this conceptual row.
|
SNMPv2-TCStorageTyper/w Textual Convention: SNMPv2-TCStorageType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.1.1.6 |
||||||||||||
|
cpkiRSAKeyPairConfigRowStatus
The conceptual row status of the key-pair entry.
Deleting an entry through row delete will fail if the entry is being pointed to from an instance from cpkiTrustPointTable. The objects in the entry may not… |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.1.1.7 |
cpkiTrustPointTable
table.1.3.6.1.4.1.9.9.505.1.1.2
·
1 row entry
·
25 columns
A list of trustpoint, associated key-pair,
certificates and revocation checking
configuration entries.
The table also provides control, actions, current
operating state information and last action result
information for the certificate work-flow if being
carried out using the PKI support actions.
The trustpoint configuration entry. This entry
specifies the trustpoint name, the associated key-pair
index, the identity certificate filename, some important
attributes in the identity certificate and the issuer
(CA) c…
specifies the trustpoint name, the associated key-pair
index, the identity certificate filename, some important
attributes in the identity certificate and the issuer
(CA) c…
Indexes
cpkiTrustPointName
| Column | Syntax | OID | ||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
cpkiTrustPointName
The unique name or label of a trustpoint.
|
OctetString Constraints: range: 1-64 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.1 |
||||||||||||||||||||||||||
|
cpkiTrustPointId
A unique identification number of the trustpoint.
This is included to support ordered lists of trustpoints when needed. One such scenario where such ordered list may be needed is for per application configuration of tru… |
SNMPv2-SMIUnsigned32 Textual Convention: SNMPv2-SMIUnsigned32 Unsigned32Type Constraints: range: 0..4294967295 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.2 |
||||||||||||||||||||||||||
|
cpkiKeyPairName
The name of the associated key-pair from a key-pair
table. If a key-pair is not yet associated, the value of this object will be a zero length string. If a key-pair is already associated, it can be modifi… |
OctetStringr/w Constraints: range: 0-64 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.3 |
||||||||||||||||||||||||||
|
cpkiIdCertFileName
The name of the file storing the identity
certificate. It is a unix style '/' seperated string representing the absolute path of the file in the file system of the device. If there is no identity certificate obtained as… |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.4 |
||||||||||||||||||||||||||
|
cpkiIdCertSubjectName
The subject name of the identity certificate.
If there is no certificate (as indicated by a zero length string value of the object cpkiIdCertFileName) or no subject name in the certificate, the value of this object will… |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.5 |
||||||||||||||||||||||||||
|
cpkiIdCertSerialNum
The serial number of the identity certificate.
If there is no certificate (as indicated by a zero length string value of the object cpkiIdCertFileName), the value of this object will be a zero length string. |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.6 |
||||||||||||||||||||||||||
|
cpkiIdCertStartDate
The time when the identity certificate starts to be
valid, corresponding to the notBefore field in the certificate. If there is no certificate (as indicated by a zero length string value of the object cp… |
SNMPv2-TCDateAndTime Textual Convention: SNMPv2-TCDateAndTime OctetStringType Constraints: range: 8range: 11 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.7 |
||||||||||||||||||||||||||
|
cpkiIdCertEndDate
The time when the identity certificate validity ends,
corresponding to the notAfter field in the certificate. If there is no certificate (as indicated by the zero length string value of the object cpkiId… |
SNMPv2-TCDateAndTime Textual Convention: SNMPv2-TCDateAndTime OctetStringType Constraints: range: 8range: 11 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.8 |
||||||||||||||||||||||||||
|
cpkiIdCertFingerPrint
The MD5 fingerprint of the identity certificate in
HEX string format. If there is no certificate (as indicated by a zero length string value of the object cpkiIdCertFileName), the value of this object wil… |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.9 |
||||||||||||||||||||||||||
|
cpkiIssuerCertFileName
The name of the file storing the issuer certificate.
It is a unix style '/' seperated string representing the absolute path of the file in the file system of the device. If there is no issuer certificate obtained yet, t… |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.10 |
||||||||||||||||||||||||||
|
cpkiIssuerCertSubjectName
The issuer name (subject name in issuer certificate
which will be the same as the issuer name in the identity certificate if present). If there is no certificate (as indicated by a zero length string valu… |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.11 |
||||||||||||||||||||||||||
|
cpkiIssuerCertSerialNum
The serial number of the issuer certificate.
If there is no certificate (as indicated by a zero length string value of the object cpkiIssuerCertFileName), the value will be a zero length string. |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.12 |
||||||||||||||||||||||||||
|
cpkiIssuerCertStartDate
The time when the issuer certificate starts to be
valid, corresponding to the notBefore field in the certificate. If there is no certificate (as indicated by a zero length string value of the object cpkiI… |
SNMPv2-TCDateAndTime Textual Convention: SNMPv2-TCDateAndTime OctetStringType Constraints: range: 8range: 11 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.13 |
||||||||||||||||||||||||||
|
cpkiIssuerCertEndDate
The time when the issuer certificate validity ends,
corresponding to the notAfter field on in the certificate. If there is no certificate (as indicated by a zero length string value of the object cpkiIssu… |
SNMPv2-TCDateAndTime Textual Convention: SNMPv2-TCDateAndTime OctetStringType Constraints: range: 8range: 11 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.14 |
||||||||||||||||||||||||||
|
cpkiIssuerCertFingerPrint
The MD5 fingerprint of the issuer's certificate in
HEX string format. If there is no certificate (as indicated by a zero length string value of cpkiIssuerCertFileName), the value of this object will be a … |
OctetString Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.15 |
||||||||||||||||||||||||||
|
cpkiRevokeCheckMethods
Revocation checking methods list which is an ordered
list of certificate revocation checking methods to be employed while verifying peer certificates issued by the CA corresponding to this trust point entry. … |
OctetStringr/w Constraints: range: 16-16 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.16 |
||||||||||||||||||||||||||
|
cpkiOCSPurl
The contact http url of the external OCSP server for
certificate revocation checking using OCSP protocol. The default value of this object (after row creation) is a zero length string |
OctetStringr/w Constraints: range: 0-255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.17 |
||||||||||||||||||||||||||
|
cpkiAction
The PKI support action to be triggered for this
trustpoint entry. The PKI support actions are steps in the certificate work-flow used to facilitate the configuration of the RSAkey-pair, identity certifica… |
CiscoPkiActionr/w Textual Convention: CiscoPkiAction EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.2.1.18 |
||||||||||||||||||||||||||
|
cpkiActionUrl
The value of this object indicates the filename
containig the input or output certificate data needed for the PKI support action being triggered on this entry. The filename should pe specified as 'bootflash:<filename>' … |
SNMP-FRAMEWORK-MIBSnmpAdminStringr/w Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.19 |
||||||||||||||||||||||||||
|
cpkiActionPassword
The value of this object indicates the password
required to perform the PKI support action being triggered. This password is required to be specified only for 'certreq', 'importpkcs12' and 'exportpkcs12' actions. … |
OctetStringr/w Constraints: range: 0-64 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.20 |
||||||||||||||||||||||||||
|
cpkiLastAction
The PKI support action attempted last. In otherwords,
the value attempted to be set for cpkiAction object last. If no action has been triggered for the trustpoint after its creation, then retrieving the value of this ob… |
CiscoPkiAction Textual Convention: CiscoPkiAction EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.2.1.21 |
||||||||||||||||||||||||||
|
cpkiLastActionResult
The result of the execution of the last PKI support
action (represented by the value of cpkiLastAction). When the value of this object is 'inProgress', an attempt to set the value of cpkiAction object will return inCons… |
CiscoPkiActionResult Textual Convention: CiscoPkiActionResult EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.2.1.22 |
||||||||||||||||||||||||||
|
cpkiLastActionFailureReason
The failure reason description for the failed
execution of PKI support action. If the object cpkiActionResult has the value 'failed', then this object contains the reason string as to why it failed. Otherwise, the valu… |
SNMP-FRAMEWORK-MIBSnmpAdminString Textual Convention: SNMP-FRAMEWORK-MIBSnmpAdminString OctetStringType Constraints: range: 0..255 |
.1.3.6.1.4.1.9.9.505.1.1.2.1.23 |
||||||||||||||||||||||||||
|
cpkiTrustPointStorageType
The storage type for this conceptual row.
|
SNMPv2-TCStorageTyper/w Textual Convention: SNMPv2-TCStorageType EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.2.1.24 |
||||||||||||||||||||||||||
|
cpkiTrustPointConfigRowStatus
The conceptual row status of the trustpoint entry.
After row creation, the value of this object will become active(1) as there is no prerequisite of certain objects to be set to make this object active. … |
SNMPv2-TCRowStatusr/w Textual Convention: SNMPv2-TCRowStatus EnumerationType Values:
|
.1.3.6.1.4.1.9.9.505.1.1.2.1.25 |