Step F. Revoke The Certificate - Netscape MANAGEMENT SYSTEM 6.01 Installation And Setup Manual
Hide thumbs
Also See for NETSCAPE MANAGEMENT SYSTEM 6.01:
- Configuration manual (282 pages) ,
- Reference (162 pages) ,
- Installation manual (106 pages)
Table of Contents
Advertisement
Locate the user entry for which you requested the certificate.
3.
Double-click the entry and check if the entry has a
4.
You should find the certificate published to the attribute. You won't be able to
see anything interesting about the certificate; it will be a DER-encoded binary
blob.
Alternatively, you can point your browser to the user entry in the directory to
verify that the certificate has been published. To do this:
Open a web browser window.
1.
In the URL field, type
2.
ldap://<hostname>:<port>/<base_dn>??sub?(uid=<user_id>)
substituting
<hostname>
Server,
<port_number>
listening to publishing requests from the Certificate Manager
the DN to start searching for the user's entry, and
user to whom you issued the certificate.
For example, if the directory host name is
base DN is
O=example.com
this:
ldap://corpDirectory:389/O=example.com??sub?(uid=jdoe)
In the resulting page, look for the user's certificate-related information. The
information typically includes the owner of the certificate, the CA that issued
the certificate, the serial number, the validity period, and the certificate
fingerprint.
Step F. Revoke the Certificate
To check whether you've configured the Certificate Manager to publish the CRL to
the directory correctly, revoke the certificate you issued. In "Step A. Specify CRL
Details" on page 629, if you didn't configure the Certificate Manager to publish the
CRL every time a certificate is revoked, go back to the Revocation List tab and
select the "Every time a certificate is revoked or taken off-hold" option. After you
complete testing, remember to go back to the same tab and uncheck the option.
To revoke the certificate:
Go to the end-entity interface for the Certificate Manager (or to the Registration
1.
Manager that's connected to this Certificate Manager. Be sure to go to the
HTTPS interface (the revocation feature is not available in the HTTP interface).
Select the Revocation tab.
2.
Configuring a Certificate Manager to Publish Certificates and CRLs
with the fully qualified host name of the Directory
with the port number at which the Directory Server is
corpDirectory
, and user's ID is
jdoe
Chapter 19
attribute.
certificate
,
<base_dn>
with the ID of the
<user_id>
, port number is
, the URL would look like
Setting Up LDAP Publishing
with
,
389
641
Advertisement
Table of Contents
