Configuring Crls For Each Issuing Point - Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION Admin Manual
Hide thumbs
Also See for CERTIFICATE SYSTEM 8.0 - ADMINISTRATION:
- Using manual (48 pages) ,
- Agents manual (146 pages) ,
- Manual (124 pages)
Table of Contents
Advertisement
Chapter 6. Revoking Certificates and Issuing CRLs
Figure 6.2. CRL Issuing Point Editor
NOTE
If some fields do not appear large enough to read the content, expand the window by
dragging one of the corners.
Fill in the following fields:
• Enable. Enables the issuing point if selected; deselect to disable.
• CRL Issuing Point name. Gives the name for the issuing point; spaces are not allowed.
• Description. Describes the issuing point.
4. Click OK.
To view and configure a new issuing point, close the CA Console, then open the Console again. The
new issuing point is listed below the CRL Issuing Points entry in the navigation tree.
Configure CRLs for the new issuing point, and set up any CRL extensions that will be used with
Section 6.3.2, "Configuring CRLs for Each Issuing Point"
the CRL. See
Section 6.3.3, "Setting CRL Extensions"
an issuing point. See
extensions. All the CRLs created appear on the Update Revocation List page of the agent services
pages.
6.3.2. Configuring CRLs for Each Issuing Point
Information, such as the generation interval, the CRL version, CRL extensions, and the signing
algorithm, can all be configured for the CRLs for the issuing point. The CRLs must be configured for
each issuing point.
1. Open the CA console.
pkiconsole https://server.example.com:9445/ca
2. In the navigation tree, select Certificate Manager, and then select CRL Issuing Points.
176
for details on configuring
for details on setting up the CRL
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8.0 - ADMINISTRATION and is the answer not in the manual?
Questions and answers