Virtual Private Networks (VPN) IPsec
Digi Connect IT® 4 User Guide
363
n getCRL: A CRL query using the issuer name and serial number from the certificate
whose revocation status is being queried.
The default is url.
c. If type is set to url, set the URL that should be used:
(config network scep_client scep_client_name)> crl url value
(config network scep_client scep_client_name)>
11. Configure certificate renewal:
a. To enable the creation of a new private key for renewal requests:
(config network scep_client scep_client_name)> renewal new_key true
(config network scep_client scep_client_name)>
b. The use of a client certificate for renewal requests is enabled by default. To disable:
(config network scep_client scep_client_name)> renewal use_client_cert
false
(config network scep_client scep_client_name)>
12. Set the maximum time that the device will poll the SCEP server, when operating in manual
mode:
(config network scep_client scep_client_name)> max_poll_time value
(config network scep_client scep_client_name)>
where value is any number of weeks, days, hours, minutes, or seconds, and takes the format
number{w|d|h|m|s}.
For example, to set max_poll_time to ten minutes, enter either 10m or 600s:
(config network scep_client scep_client_name)> max_poll_time 600s
(config network scep_client scep_client_name)>
The default is 1d.
13. Set the amount of time that the device should wait between polling attempts, when operating
in manual mode:
(config network scep_client scep_client_name)> polling_interval value
(config network scep_client scep_client_name)>
where value is any number of weeks, days, hours, minutes, or seconds, and takes the format
number{w|d|h|m|s}.
For example, to set polling_interval to ten minutes, enter either 10m or 600s:
(config network scep_client scep_client_name)> polling_interval 600s
(config network scep_client scep_client_name)>
The default is 5s.
To Next Page
Loading...
Need help?
General
