Red Hat CERTIFICATE SYSTEM 8.0 - ADMINISTRATION Admin Manual page 207
Hide thumbs
Also See for CERTIFICATE SYSTEM 8.0 - ADMINISTRATION:
- Using manual (48 pages) ,
- Agents manual (146 pages) ,
- Manual (124 pages)
Table of Contents
Advertisement
4. Edit the following parameters:
• revocationChecking.bufferSize . Sets the total number of last-checked certificates the
server should maintain in its cache. For example, if the buffer size is 2, the server retains the
last two certificates checked in its cache. By default, the server caches the last 50 certificates.
• revocationChecking.subsystem. Gives the name of the Certificate System instance.
subsystem indicates whether the subsystem is a Certificate Manager (ca). Do not change the
default values.
• revocationChecking.enabled . Sets revocation checking. true enables checking; false
disables checking. By default, the feature is enabled.
• revocationChecking.unknownStateInterval . Sets how frequently the server checks
the revocation status. The default interval is 0 seconds.
• revocationChecking.validityInterval . Sets how long the cached certificates are
considered valid. Be judicious when choosing the interval. For example, if the validity period
is 60 seconds, the server discards the certificates in its cache every minute and attempts to
retrieve them from their source. The Certificate Manager uses its internal database to retrieve
and verify the revocation status of the certificates. The default validity period is 120 seconds (2
minutes).
5. Start the Certificate System instance.
service instance_ID start
Enabling Automatic Revocation Checking for Agent Certificates
185
Advertisement
Table of Contents
Need help?
Do you have a question about the CERTIFICATE SYSTEM 8.0 - ADMINISTRATION and is the answer not in the manual?