Ipsec Crl - Juniper JUNOSE SOFTWARE 11.2.X - XML MANAGEMENT PROTOCOL GUIDE 6-30-2010 Command Reference Manual
Software for e series broadband services routers command reference a to m
Hide thumbs
Also See for JUNOSE SOFTWARE 11.2.X - XML MANAGEMENT PROTOCOL GUIDE 6-30-2010:
- Manual (282 pages)
Table of Contents
Advertisement
JunosE 11.2.x Command Reference Guide A to M
ipsec crl
Syntax
Release Information
Description
Options
Mode
990
ipsec crl { ignored | optional | required }
no ipsec crl
Command introduced before JunosE Release 7.1.0.
Controls how the router checks certificate revocation lists (CRLs) when determining
whether to accept a peer's certificates. The no version restores the default setting.
NOTE: This command is replacing the ike crl command. The ike crl command may be
removed completely in a future release.
ignored—Specifies that the router will not try to find or use CRLs
optional—Specifies that the router will try to find a CRL. If a CRL is found, the peer
certificate must not appear in the CRL. If no CRL is found, the peer can still authenticate;
this is the default.
required—Specifies that the router must find a valid CRL; the CRL must be current, and
the peer certificate must not appear in the CRL
Global Configuration
Copyright © 2010, Juniper Networks, Inc.
Advertisement
Table of Contents
