Ssl-Profile - IBM WebSphere XS40 Command Reference Manual

Examples
v Enters CRL Mode to create the LDAP1440 LDAP-enabled CRL Update Policy. The

ssl-profile

Assigns a client (or forward) SSL Proxy Profile.
Syntax
ssl-profile name
Parameters
name
Guidelines
The client SSL Proxy profile must be previously created with the sslproxy
command.
The assigned SSL Proxy Profile enables CRL retrieval over a secure connection. The
SSL proxy profile specifies the SSL operational mode (client) and identifies the
cryptographic resources (key, certificates, and cipher list) available to support the
SSL connection.
Assignment of a client SSL Proxy profile is optional. In the absence of an assigned
SSL Proxy Profile, the CRL Update Policy attempts to establish a nonsecure
connection (either HTTP or LDAP) with the CRL server.
Related Commands
sslproxy
Examples
v Assigns the SSL-CRLAccess SSL Policy Profile to the current CRL Update Policy.
ragnarok LDAP server (with default port 389) is accessed with the account name
of X and a password of 1PAss$WorD. The target certificate is issued by VeriSign
Australia.
# crl LDAP1440 ldap
Entering CRL mode for 'LDAP1440'
# bind-dn X
# bind-pass 1PAss$WorD
# read-dn "C=AU,
ST=Victoria, L=South Melbourne, O=VeriSign Australia
Limited, OU=IT Department, CN=www.verisign.com.au"
# remote-address ragnarok
#
Specifies the name of an existing SSL Proxy Profile.
# ssl-profile SSL-CRLAccess
#
Chapter 10. CRL configuration mode
211