Fortinet black logo

CLI Reference

config vpn certificate ocsp-server

config vpn certificate ocsp-server

OCSP server configuration.

config vpn certificate ocsp-server
    Description: OCSP server configuration.
    edit <name>
        set cert {string}
        set secondary-cert {string}
        set secondary-url {string}
        set source-ip {ipv4-address}
        set unavail-action [revoke|ignore]
        set url {string}
    next
end

config vpn certificate ocsp-server

Parameter

Description

Type

Size

Default

cert

OCSP server certificate.

string

Maximum length: 127

name

OCSP server entry name.

string

Maximum length: 35

secondary-cert

Secondary OCSP server certificate.

string

Maximum length: 127

secondary-url

Secondary OCSP server URL.

string

Maximum length: 127

source-ip

Source IP address for communications to the OCSP server.

ipv4-address

Not Specified

0.0.0.0

unavail-action

Action when server is unavailable (revoke the certificate or ignore the result of the check).

option

-

revoke

Option

Description

revoke

Revoke certificate if server is unavailable.

ignore

Ignore OCSP check if server is unavailable.

url

OCSP server URL.

string

Maximum length: 127

config vpn certificate ocsp-server

OCSP server configuration.

config vpn certificate ocsp-server
    Description: OCSP server configuration.
    edit <name>
        set cert {string}
        set secondary-cert {string}
        set secondary-url {string}
        set source-ip {ipv4-address}
        set unavail-action [revoke|ignore]
        set url {string}
    next
end

config vpn certificate ocsp-server

Parameter

Description

Type

Size

Default

cert

OCSP server certificate.

string

Maximum length: 127

name

OCSP server entry name.

string

Maximum length: 35

secondary-cert

Secondary OCSP server certificate.

string

Maximum length: 127

secondary-url

Secondary OCSP server URL.

string

Maximum length: 127

source-ip

Source IP address for communications to the OCSP server.

ipv4-address

Not Specified

0.0.0.0

unavail-action

Action when server is unavailable (revoke the certificate or ignore the result of the check).

option

-

revoke

Option

Description

revoke

Revoke certificate if server is unavailable.

ignore

Ignore OCSP check if server is unavailable.

url

OCSP server URL.

string

Maximum length: 127