Crldistributionpointsext - Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR Administrator's Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR:
Table of Contents
Advertisement
Table 12-20 CertificateScopeOfUseExt Configuration Parameters (Continued)
Parameter
entry<n>_port_
number
CRLDistributionPointsExt
The
CRLDistributionPointsExt
Distribution Points Extension to certificates. This extension, when present in a certificate,
identifies one or more locations from where the application that is validating the certificate
can obtain the CRL information (to verify the revocation status of the certificate).
For general information about this extension, see "CRLDistributionPoints" on page 733.
During installation, CS automatically creates an instance of the CRL distribution points
extension policy, named
Description
•
If you selected iPAddress, the value must be a valid IP address specified in
dot-separated numeric component notation. The syntax for specifying the IP address
is as follows:
IPv4 address must be in the n.n.n.n format; for example, 128.21.39.40. IPv4
address with netmask must be in the n.n.n.n,m.m.m.m format. For example,
128.21.39.40,255.255.255.00.
For IP version 6 (IPv6), the address should be in the form with netmask separated by
a comma. Examples of IPv6 addresses with no netmask are
0:0:0:0:0:0:13.1.68.3 and FF01::43. Examples of IPv6 addresses with
netmask are 0:0:0:0:0:0:13.1.68.3,FFFF:FFFF:FFFF:FFFF:FFFF:
FFFF:255.255.255.0 and
FF01::43,FFFF:FFFF:FFFF:FFFF:FFFF:FFFF:FF00:0000.
•
If you selected OID, the value must be a unique, valid OID specified in
dot-separated numeric component notation. Although you can invent your own
OIDs for the purposes of evaluating and testing this server, in a production
environment, you should comply with the ISO rules for defining OIDs and for
registering subtrees of IDs. See
information on allocating private OIDs. For example, 1.2.3.4.55.6.5.99.
•
If you selected otherName, the value must be the absolute path to the file that
contains the base-64 encoded string for the site. For example,
/usr/netscape/servers/ext/aia/othername.txt.
Specifies the port number.
Example: 8888
CRLDistributionPointsExt
Extension-Specific Policy Module Reference
Appendix H, "Object Identifiers"
plug-in module enables you to add the CRL
, that is disabled by default.
for
Chapter 12
Policies
501
Advertisement
Table of Contents
Related Manuals for Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR
Related Products for Red Hat CERTIFICATE SYSTEM 7.1 - ADMINISTRATOR
- Red Hat CERTIFICATE SYSTEM 7.0 - MIGRATION GUIDE
- Red Hat CERTIFICATE SYSTEM 7.3 - ADMINISTRATION
- Red Hat LINUX 7.2 - S-390
- Red Hat LINUX 7.1 - PSERIES
- Red Hat SYSTEM 8.0 - MIGRATION GUIDE 7.X TO 8.0
- Red Hat CERTIFICATE SYSTEM 7.2 - AGENT GUIDE
- Red Hat DIRECTORY SERVER 7.1 SP7 - S
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE