•
Decide the interval for publishing CRLs—configuring the server to publish
every time a certificate is revoked will result in that many CRL files.
•
Determine the backup media and schedule for these files.
Step 2. Configure the Certificate Manager
To configure a Certificate Manager to publish certificates and CRLs to files, follow
these steps:
•
Step A. Create a Publisher for the File
•
Step B. Create Publishing Rules for Certificates
•
Step C. Create a Publishing Rule for CRLs
•
Step D. Specify CRL Details
•
Step E. Set the CRL Extensions
•
Step F. Make Sure Publishing is Enabled
Step A. Create a Publisher for the File
Creating a publisher for the file involves creating an instance of the publisher
module that enables the Certificate Manager to publish certificates and CRLs to
files. In the next step, "Step B. Create Publishing Rules for Certificates" on
page 671, you specify the publisher you create here.
To create a publisher:
Log in to the CMS window for the Certificate Manager (see "Logging In to the
1.
CMS Window" on page 343).
Select the Configuration tab.
2.
In the navigation tree, select Certificate Manager, select Publishing, and then
3.
select Publishers.
The right pane displays the Publishers Management tab, which lists configured
publisher instances.
Configuring Certificate Manager to Publish to Files
Chapter 20
Publishing Certificates and CRLs to a File
669