Nortel Networks NN46120-104 User Manual
Page 117
Revoking Client Certificates Issued within your Own Organization
117
>> Revocation# import
Select protocol (tftp/ftp/scp/sftp) [tftp]: ftp
Enter host or IP address of server: 192.168.128.20
(example)
Enter name of file on server (PEM, DER or ASCII format):
crl.der
Retrieving crl.der from 192.168.128.20
Received 12628 bytes in 0.1 seconds
Certificate revocation list found in der format
Revocation list added.
Use ’apply’ to activate changes.
3
Apply your changes.
>> Revocation# apply
Changes applied successfully.
--End--
Revoking Client Certificates Issued within your Own Organization
Step
Action
1
Specify the CA certificate, to which you want to add a CRL.
Specify the certificate number that represents the CA certificate
of the certificate used for generating the client certificate you
want to revoke. To view basic information about available
certificates, use the
/info/certs
command.
>> Main# cfg/cert
Enter certificate number:
(1-) 1
(example)
>> Certificate 1# revoke
2
Add the serial number of a specific client certificate to
revoke.
>> Revocation# add
Enter serial number to revoke:
To add serial numbers in hexadecimal form, enter addx instead
of add.
Nortel VPN Gateway
User Guide
NN46120-104
02.01
Standard
14 April 2008
Copyright © 2007-2008 Nortel Networks
.