This article provides steps on how to migrate or copy local certificates from one SRX device to another SRX device.
Please follow the below steps to copy existing local-certificates from one SRX device to another SRX device:
Step 1: Export the key-pair using the below command-
>request security pki key-pair export certificate-id <certificate-id> filename <key-filename> type pem passphrase <passphrase>
To determine the certificate-id, please run below command-
> show security pki local-certificate
Step 2: Export the local certificate using the below command-
>request security pki local-certificate export certificate-id <certificate-ID> filename <cert-filename> type pem
Step 3: Copy the files to the new SRX
Step 4: Load the local certificate onto the new SRX using the below command-
>request security pki local-certificate load certificate-id <certificate-id> filename <cert-filename> key <key-filename> passphrase <passphrase>
Step 5: Verify that the certificate is loaded on the new SRX device using below command-
> show security pki local-certificate certificate-id <certificate-id>
2024-10-23 : Article Created
