test password-map
This command tests the association between an encrypted password alias and a file.
Syntax
test password-map alias type URL
Parameters
- alias
- Specifies the name of the candidate alias.
- type
- Identifies the file type. Use the value
keyorcert. - URL
- Specifies a local URL that identifies the file that contains the
certificate or key.
- If stored in the public cryptographic area, takes the
pubcert:fileform. - If stored in the private cryptographic area, takes the
fileform.
- If stored in the public cryptographic area, takes the
Guidelines
The test password-map command tests the association between an encrypted password alias and a file. Confirms or denies that the alias references the password that protects the file.
Assuming syntactical correctness, testing a key or
certificate file that does not require a password succeeds in all
cases.
Note: The test password-map command cannot
be used in a startup configuration. If found, the script ignores the
command.
Examples
- Indicates that
towsondoes not reference the encrypted password that protects thedpSupplied.dercertificate file.# test password-map towson cert pubcert:dpSupplied.der Alias 'towson' with file 'pubcert:dpSupplied.der' --> FAIL - Indicates that
dundaulkreferences the encrypted password that protects thedpSupplied.dercertificate file.# test password-map dundaulk cert pubcert:dpSupplied.der Alias 'dundaulk' with file 'pubcert:dpSupplied.der' --> OK - Indicates that
columbiadoes not reference the encrypted password that protects theK2.derkey file.# test password-map columbia key K2.der Alias 'columbia' with file 'K2.der' --> FAIL - Indicates that
towsonreferences the encrypted password that protects theK2.derkey file.# test password-map towson key K2.der Alias 'towson' with file 'K2.der' --> OK