35-28
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 35 Configuring Digital Certificates
Managing User Certificates
Step 4 Click OK to close the View & Regenerate OTP dialog box.
What to Do Next
See the “Managing User Certificates” section on page 35-28.
Managing User Certificates
To change the certificate status, perform the following steps:
Step 1 In the Manage User Certificates pane, select specific certificates by username or by certificate serial
number.
Step 2 Choose one of the following options:
• If the user certificate lifetime period runs out, to remove user access, click Revoke. The local CA
also marks the certificate as revoked in the certificate database, automatically updates the
information, and reissues the CRL.
• To restore access, select a revoked certificate and click Unrevoke. The local CA also marks the
certificate as unrevoked in the certificate database, automatically updates the certificate information,
and reissues an updated CRL.
Step 3 Click Apply when you are done to save your changes.
What to Do Next
See the “Monitoring CRLs” section on page 35-28.
Monitoring CRLs
To monitor CRLs, perform the following steps:
Step 1 In the ASDM main application window, choose Monitoring > Properties > CRL.
Step 2 In the CRL area, choose the CA certificate name from the drop-down list.
Step 3 To display CRL details, click View CRL. For example:
CRL Issuer Name:
cn=asa4.cisco.com
LastUpdate: 09:58:34 UTC Nov 11 2009
NextUpdate: 15:58:34 UTC Nov 11 2009
Cached Until: 15:58:34 UTC Nov 11 2009
Retrieved from CRL Distribution Point:
** CDP Not Published - Retrieved via SCEP
Size (bytes): 224
Associated Trustpoints: LOCAL-CA-SERVER
To Next Page
Loading...
Need help?
General
