Table of Contents
Advertisement
v Deletes the bob certificate alias.
cert-monitor
Enters Crypto Certificate Monitor configuration mode.
Syntax
cert-monitor
Guidelines
The Certificate Monitor is a configurable periodic task that checks the expiration
date of all certificate objects.
While in Crypto Certificate Monitor configuration mode, you can set values that
establish both a polling frequency and a notification window, during which the
monitor generates log messages recording that a specified certificate is nearing its
expiration date.
Examples
v Enters Crypto Certificate Monitor configuration mode.
crl
Creates a named CRL (Certificate Revocation List) Update Policy and enters CRL
Mode.
Syntax
crl name {http | ldap}
no crl
Parameters
name
http
ldap
Guidelines
While in CRL Mode, use the fetch-url and refresh commands to define an
HTTP-enabled CRL update policy; use the bind-dn, bind-pass, read-dn, refresh,
and remote-address commands to define an LDAP-enabled CRL update policy.
# certificate bob pubcert:bob.pem
password-alias dundaulk
Creating certificate 'bob'
#
# no certificate bob
Certificate 'bob' deleted
#
# cert-monitor
Crypto Certificate Monitor configuration mode
#
Specifies the name of the CRL update policy.
The name can contain a maximum of 32 characters. For restrictions, refer to
"Object name conventions" on page xxiv.
Indicates an HTTP-enabled CRL update policy.
Indicates an LDAP-enabled CRL update policy
Chapter 11. Crypto configuration mode
215
Advertisement
Table of Contents
