Table of Contents
Advertisement
For general information about this extension, see "CRLDistributionPoints" on
page 726.
During installation, CMS automatically creates an instance of the CRL distribution
points extension policy, named
default.
Table 11-21 CRLDistributionPointsExt Configuration Parameters
Parameter
Description
Specifies whether the rule is enabled or disabled. Select to enable, deselect to disable.
enable
Specifies the predicate expression for this rule. If you want this rule to be applied to
predicate
all certificate requests, leave the field blank (default). To form a predicate expression,
see "Using Predicates in Policy Rules" on page 485.
Specifies whether the extension should be marked critical or noncritical. Select to
critical
mark critical, deselect to mark noncritical (default).
Specifies the total number of CRL distribution points to be contained or allowed in
numPoints
the extension. Can be set to either 0 specifying that no distribution points can be
contained in the extension or to n specifies the total number of distribution points to
be included in the extension; it must be an integer greater than zero. The default is 3.
Note that when you set a number other than O, each distribution point has its own set
of configuration parameters and you must specify appropriate values for each of
those parameters; otherwise the policy rule will return an error. Each set of
configuration parameters is distinguished by <n>, which is an integer derived from
the value you assign in this field. For example, if you set the numPoints parameter to
2, <n> would be 0 and 1.
Specifies the name of the CRL distribution point, the name can be in any of the
pointName<n>
following formats:
• An X.500 directory name in the RFC 2253 syntax. For example, the name would
• A URI; for example, it would look similar to this:
• An RDN which specifies a location relative to the CRL Issuer. In this case, the value
Specifies the type of the CRL distribution point.
pointType<n>
Permissible values: DirectoryName, URI, or RelativeToIssuer. The type you
select must correspond to the value in the pointName field.
• Select DirectoryName if the value in the pointName field is an X.500 directory
look similar to the subject name in a certificate, like this: CN=CA Central,
OU=Research Dept, O=Example Corporation, C=US
http://testCA.example.com:80
of the pointType attribute must be RelativeToIssuer.
name (default).
Extension-Specific Policy Module Reference
CRLDistributionPointsExt
, that is disabled by
Chapter 11
Policies
523
Advertisement
Table of Contents
Related Manuals for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
Related Products for Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - CUSTOMIZATION
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - PLUG-IN
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.01 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.0
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.1 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - AGENT GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - COMMAND-LINE
- Netscape NETSCAPE MANAGEMENT SYSTEM 6.2 - ADMINISTRATOR
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - CUSTOMIZATION GUIDE
- Netscape NETSCAPE MANAGEMENT SYSTEM 4.5 - PLUG-IN