[x]

Configuring PKI > Configuring PKI certificate verification

 

 Next

Configuring PKI certificate verification

A certificate needs to be verified before being used. Verifying a certificate will check that the certificate is signed by the CA and that the certificate has neither expired nor been revoked.

You can specify whether CRL checking is required in certificate verification. If you enable CRL checking, CRLs will be used in verification of a certificate. In this case, be sure to retrieve the CA certificate and CRLs to the local device before the certificate verification. If you disable CRL checking, you only need to retrieve the CA certificate.

The CRL update period defines the interval at which the entity downloads CRLs from the CRL server. The CRL update period setting manually configured on the device is prior to that carried in the CRLs.

prev

 

up

 next

Retrieving a certificate manually 

home

 Configuring PKI certificate verification with CRL checking

© Copyright 2016 Hewlett Packard Enterprise Development LP