Table of Contents
Advertisement
2. Download and add a CRL from a TFTP/FTP/SCP/SFTP server.
3. Apply your changes.
Revoking Client Certificates Issued within your Own Organization
1. Specify the CA certificate, to which you want to add a CRL.
User Guide
revoke
>> Certificate 1#
Specify the host name or IP address of the TFTP/FTP/SCP/SFTP server, and
provide the file name of the CRL. The CRL is retrieved and added to Certificate 1
(used as an example).
import
>> Revocation#
Select protocol (tftp/ftp/scp/sftp) [tftp]:
Enter host or IP address of server:
(example)
Enter name of file on server (PEM, DER or ASCII format):
Retrieving crl.der from 192.168.128.20
Received 12628 bytes in 0.1 seconds
Certificate revocation list found in der format
Revocation list added.
Use 'apply' to activate changes.
apply
>> Revocation#
Changes applied successfully.
Specify the certificate number that represents the CA certificate of the certificate
used for generating the client certificate you want to revoke. To view basic
information about available certificates, use the /info/certs command.
cfg/cert
>> Main#
Enter certificate number: (1-)
(example)
Managing Revocation of Client Certificates
ftp
192.168.128.20
1
crl.der
April 2013
109
Advertisement
Table of Contents
