I am writing automation scirpts where i collect some info from gateway via ssh (interfaces, routing etc...) and some info from sms via API (fw rules, nat rules etc).
I didnt find a way yet how to 100% correctly pair gateway where i connect via ssh with "show-gateways-and-servers" api endpoint from sms.
Ideal would be to compare SIC certificates, but from SMS i was just able to get some shortened ones:
cp-2> cpca_client lscert -kind SIC
Operation succeeded. rc=0.
30 certs found.
Subject = CN=cp_mgmt,O=cp-2..5qabcd
Status = Valid Kind = SIC Serial = 3843 DP = 0
Not_Before: Mon Jun 24 11:34:04 2024 Not_After: Sun Jun 24 11:34:04 2029
Subject = CN=cp-vss,O=cp-2..5qabcd
Status = Revoked Kind = SIC Serial = 9159 DP = 0
Not_Before: Tue Jun 24 11:34:41 2025 Not_After: Mon Jun 24 11:34:41 2030
but i havent found any command which would show me full certificate.
On GW itself i wasnt able to found any cli command to show SIC certificates.
Is there some way how to show SIC cert on both sides? Or some other way how to pair gw with SMS?
FYI, pairing via gateway name or ip adress is a no go as i already encountered situations where they were duplicated and/or didnt match
Thank you!