Cisco ASA 5505 Configuration Manual page 740

Asa 5500 series

Hide thumbs Also See for ASA 5505:

Getting started manual (168 pages)

Administrator's manual (118 pages)

Hardware installation manual (82 pages)

Table of Contents

Configuring CA Certificate Authentication

Check the Use CRL Distribution Point from the certificate check box to direct revocation checking

to the CRL distribution point from the certificate being checked.

Check the Use Static URLs configured below check box to list specific URLs to be used for CRL

retrieval. The URLs you select are implemented in the order in which you add them. If an error occurs

with the specified URL, the next URL in order is taken.

In the Static Configuration area, click Add.

The Add Static URL dialog box appears.

In the URL field, enter the static URL to use for distributing the CRLs, and then click OK.

The URL that you entered appears in the Static URLs list.

To change the static URL, select it, and then click Edit.

To remove an existing static URL, select it, and then click Delete.

To change the order in which the static URLs appear, click Move Up or Move Down.

Click OK to close this tab. Alternatively, to continue, see the

section on page

Configuring CRL Retrieval Methods

To configure CRL retrieval methods, perform the following steps:

In the Configuration Options for CA Certificates pane, click the CRL Retrieval Methods tab.

Choose one of the following three retrieval methods:

Click OK to close this tab. Alternatively, to continue, see the

Cisco ASA 5500 Series Configuration Guide using ASDM

To enable LDAP for CRL retrieval, check the Enable Lightweight Directory Access Protocol

(LDAP) check box. With LDAP, CRL retrieval starts an LDAP session by connecting to a named

LDAP server, accessed by a password. The connection is on TCP port 389 by default. Enter the

following required parameters:

Confirm Password

Default Server (server name)

Default Port (389)

To enable HTTP for CRL retrieval, check the Enable HTTP check box.

To enable SCEP for CRL retrieval, check the Enable Simple Certificate Enrollment Protocol

(SCEP) check box.

Configuring Digital Certificates

"Configuring CRL Retrieval Methods"

"Configuring OCSP Rules" section on

Show Quick Links

Chapters

Table of Contents

Asa 5510 Asa 5540 Asa 5520 Asa 5550 Asa 5580

Cisco ASA 5505 Configuration Manual page 740

Hide quick links:

Chapters

Related Manuals for Cisco ASA 5505

Related Products for Cisco ASA 5505

This manual is also suitable for:

Table of Contents