EasyManua.ls Logo

Alcatel-Lucent 7450 - Page 159

Alcatel-Lucent 7450
554 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Security
7450 ESS System Mangement Guide Page 159
Parameters hours — Specfies the amount of time before a certificate expires when system issues BeforeExp.
Values 0 — 8760
repeat repeat-hoursThe system will repeat BeforeExp every repeat-hour.
Values 0 — 8760
crl-expiration-warning
Syntax crl-expiration-warning hours [repeat repeat-hours]
no crl-expiration-warning
Context config>system>security>pki
Description This command specifies when system will issue BeforeExp message before a CRL expires. For
example, with certificate-expiration-warning 5, the system will issue a BeforeExp message 5 hours
before a CRL expires. An optional repeat <repeat-hour> parameter will enable the system to repeat
the BeforeExp message every hour until the CRL expires.
If the user only wants AfterExp, then certificate-expiration-warning 0 can be used to achieve this.
BeforeExp and AfterExp warnings can be cleared in following cases:
The CRL is reloaded by the admin certificate reload command. In this case, if the reloaded file
is not expired, then AfterExp is cleared. And, if the reloaded file is outside of configured warn-
ing window, then the BeforeExp is also cleared.
•When the ca-profile is shutdown, then BeforeExp and AfterExp of corresponding certificates
are cleared.
•When no crl-expiration-warning command is configured, then all existing BeforeExp and
AfterExp are cleared.
Users may change the configuration of the crl-expiration-warning so that certain CRL are no
longer in the warning window. BeforeExp of corresponding CRL are cleared.
If the system time changes so that the new time causes the CRL to no longer be in the warning
window, then BeforeExp is cleared. If the new time causes an expired CRL to come non-expired,
then AfterExp is cleared.
Default no crl-expiration-warning
Parameters hours — Specifies the amount of time before a CRL expires when system issues BeforeExp.
Values 0 — 8760
repeat-hour — Specifies that the system will repeat BeforeExp every repeat-hour.
Values 0 — 8760
maximum-cert-chain-depth
Syntax maximum-cert-chain-depth level

Table of Contents

Other manuals for Alcatel-Lucent 7450

Preview: Quality Of Service Guide
Quality Of Service Guide912 pages
Preview: Guide
Guide816 pages
Preview: Configuration Guide
Configuration Guide778 pages
Preview: Basic System Configuration Guide
Basic System Configuration Guide576 pages
Preview: Brochure
Brochure12 pages

Related product manuals