Table of Contents
Advertisement
Guidelines
This property is required to implement a CRL Update Policy.
Examples
v Enters CRL mode to create the HTTP30 HTTP-enabled CRL Update Policy.
read-dn
Specifies the Distinguished Name of the CA that issued the target CRL.
Syntax
read-dn dn
Parameters
dn
Guidelines
You must specify a CA when defining an LDAP-enabled CRL Update Policy.
The specified CRL is stored in memory. Consequently, the CRL is lost after a
system reboot.
Related Commands
bind-dn, bind-pass, refresh, remote-address
Examples
v Enters CRL Mode to create the LDAP1440 LDAP-enabled CRL Update Policy. The
refresh
Specifies the interval between CRL updates.
Syntax
refresh minutes
Specifies crlValidate as the Validation Credentials to validate the CRL issuer.
# crl HTTP30 http
Entering CRL mode for 'HTTP30'
# issuer crlValidate
#
Specifies the Distinguished Name of the CA that issued the CRL. Enclose
the value in double quotation marks.
LDAP server is accessed with the account name of X and a password of
1PAss$WorD. The target certificate is issued by VeriSign Australia.
# crl LDAP1440 ldap
Entering CRL mode for 'LDAP1440'
# bind-dn X
# bind-pass 1PAss$WorD
# read-dn "C=AU,
ST=Victoria, L=South Melbourne, O=VeriSign Australia
Limited, OU=IT Department, CN=www.verisign.com.au"
#
Chapter 10. CRL configuration mode
209
Advertisement
Table of Contents
