system certificate crl
Use this command to edit the URL associated with a previously uploaded certificate revocation list (CRL).
To ensure that your FortiWeb appliance validates only certificates that have not been revoked, you should periodically upload a current certificate revocation list, which may be provided by certificate authorities (CA).
For information on how to upload a CRL, see the FortiWeb Administration Guide:
http://docs.fortinet.com/fortiweb/admin-guides
To use this command, your administrator account’s access control profile must have either w
or rw
permission to the admingrp
area. For details, see Permissions.
Syntax
config system certificate crl
edit "<crl_name>"
set certificate "<certificate_str>"
set type {HTTP | local | scep}
set url "<crl_str>"
next
end
Variable | Description | Default |
Enter the name of a CRL. The maximum length is 63 characters. | No default. | |
Set the certificate. Only certificates in PEM format may be set. | No default. | |
Specify how you set the certificate.
|
local
|
|
If type {HTTP | local | scep} is set as HTTP or scep , enter the URL of the certificate. The maximum length is 127 characters. |
No default. |