How to view the keyrings configured in the ProxySG/Edge SWG
search cancel

How to view the keyrings configured in the ProxySG/Edge SWG

book

Article ID: 166532

calendar_today

Updated On:

Products

ProxySG Software - SGOS

Issue/Introduction

Backup configuration files do not display keyrings and keep them hidden.

 

Resolution

To display the SSL keyrings configured on the ProxySG/Edge SWG:

In SGOS 6.7:

  • Connect to the proxy SG's command line interface (CLI).
  • Enter enable mode.
  • Run the command     
Blue Coat# show configuration expanded noprompts with-keyrings unencrypted

This will show the entire configuration as well as the keyrings.

In SGOS 7.x:

  • Firstly, set security private-key-display unencrypted option in config mode.
  • Run show configuration expanded noprompts command
Blue Coat#configure terminal

Blue Coat#(config)security private-key-display unencrypted
  ok
Blue Coat#(config)exit
Blue Coat#show configuration expanded noprompts


The expanded configuration can be written to the file if you set SSH client to write the output to a file; this may take some time depending on the size of your configuration.
This copies the entire configuration as well as the security keyrings (both private and public keys), unencrypted.

 

 

Additional Information

Note: The keyrings are only visible if they are set to "Show"

For 7.x steps above - Ensure the reset the private-key-display settings using below command:

Blue Coat#configure terminal
Blue Coat#(config)security private-key-display reset
  ok
Blue Coat#(config)exit