HP Secure Key Manager User Manual

hostname (config)# crl settings <ca name>

Transport Method:

1) FTP 2) SCP 3) HTTP

Enter a number(1-3):

Host:

Filename:

Username:

Password:

Confirm password:

Next Update:

Enter a date as Month Day HH:MM:SS Year TZ

For example, Jan 29 00:00:00 1996 GMT

Force a periodic update of the CRL?[n]:

Force Update Interval (min):

NOTE:

The Next Update prompt is used to set the Next Update field in the CRL, not to change
the actual update time. The actual update time follows the normal 5:00 AM procedures
described in the section called

Support for Certificate Revocation Lists

.

This command is only effective when Auto–Update is enabled. This command cannot be
used for local CAs.

Syntax

None

Related com-
mand(s)

no crl auto-update

– disable the Auto–Update feature.

hostname (config)# no crl auto-update

Syntax

None

Related com-
mand(s)

no crl list

– renew all revoked certificates signed by a local CA or delete the CRL published by a known

CA.

hostname (config)# no crl list <ca name>

When you use the no crl list command with a Known CA (as opposed to a local CA), the
SKM deletes the CRL published by that CA. When you use the no crl list command with a
local CA, the SKM renews all revoked certificates signed by that local CA.

Syntax

None

Related com-
mand(s)

show crl auto-update

– check if the Auto–Update feature is enabled.

hostname# show crl auto-update

Syntax

None

Related com-
mand(s)

show crl entry

– check if a certificate is on a CRL.

hostname# show crl entry <ca name> <serial number>

Syntax

Secure Key Manager

291