Specifying the fingerprint for root CA certificate verification

  1. Enter system view.

    system-view

  2. Enter PKI domain view.

    pki domain domain-name

  3. Configure the fingerprint for verifying the root CA certificate.

    In non-FIPS mode:

    root-certificate fingerprint { md5 | sha1 } string

    In FIPS mode:

    root-certificate fingerprint sha1 string

    By default, no fingerprint is configured.