EasyManuals Logo

Cisco 5510 - ASA SSL / IPsec VPN Edition Configuration Guide

Cisco 5510 - ASA SSL / IPsec VPN Edition
1822 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #740 background imageLoading...
Page #740 background image
35-12
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 35 Configuring Digital Certificates
Configuring CA Certificate Authentication
Step 2 Check the Use CRL Distribution Point from the certificate check box to direct revocation checking
to the CRL distribution point from the certificate being checked.
Step 3 Check the Use Static URLs configured below check box to list specific URLs to be used for CRL
retrieval. The URLs you select are implemented in the order in which you add them. If an error occurs
with the specified URL, the next URL in order is taken.
Step 4 In the Static Configuration area, click Add.
The Add Static URL dialog box appears.
Step 5 In the URL field, enter the static URL to use for distributing the CRLs, and then click OK.
The URL that you entered appears in the Static URLs list.
Step 6 To change the static URL, select it, and then click Edit.
Step 7 To remove an existing static URL, select it, and then click Delete.
Step 8 To change the order in which the static URLs appear, click Move Up or Move Down.
Step 9 Click OK to close this tab. Alternatively, to continue, see the “Configuring CRL Retrieval Methods”
section on page 35-12.
Configuring CRL Retrieval Methods
To configure CRL retrieval methods, perform the following steps:
Step 1 In the Configuration Options for CA Certificates pane, click the CRL Retrieval Methods tab.
Step 2 Choose one of the following three retrieval methods:
To enable LDAP for CRL retrieval, check the Enable Lightweight Directory Access Protocol
(LDAP) check box. With LDAP, CRL retrieval starts an LDAP session by connecting to a named
LDAP server, accessed by a password. The connection is on TCP port 389 by default. Enter the
following required parameters:
Name
Password
Confirm Password
Default Server (server name)
Default Port (389)
To enable HTTP for CRL retrieval, check the Enable HTTP check box.
To enable SCEP for CRL retrieval, check the Enable Simple Certificate Enrollment Protocol
(SCEP) check box.
Step 3 Click OK to close this tab. Alternatively, to continue, see the “Configuring OCSP Rules” section on
page 35-13.

Table of Contents

Other manuals for Cisco 5510 - ASA SSL / IPsec VPN Edition

Preview: Cli Configuration Guide
Cli Configuration Guide2164 pages
Preview: Hardware Installation Guide
Hardware Installation Guide82 pages
Preview: Getting Started Guide
Getting Started Guide208 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the Cisco 5510 - ASA SSL / IPsec VPN Edition and is the answer not in the manual?

Cisco 5510 - ASA SSL / IPsec VPN Edition Specifications

General IconGeneral
BrandCisco
Model5510 - ASA SSL / IPsec VPN Edition
CategoryFirewall
LanguageEnglish

Related product manuals