HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 176
Deleting a certificate, Configuring an access control policy, Displaying and maintaining PKI
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 176 highlights
For more information about the public-key local destroy command, see Security Command Reference. Deleting a certificate When a certificate requested manually is about to expire or you want to request a new certificate, you can delete the current local certificate or CA certificate. To delete a certificate: Step 1. Enter system view. 2. Delete certificates. Command system-view pki delete-certificate { ca | local } domain domain-name Configuring an access control policy By configuring a certificate attribute access control policy, you can further control access to the server, providing additional security for the server. To configure a certificate attribute access control policy: Step 1. Enter system view. Command system-view Remarks N/A 2. Create a certificate attribute group and enter its view. pki certificate attribute-group group-name No certificate attribute group exists by default. 3. Configure an attribute rule for attribute id { alt-subject-name Optional. the certificate issuer name, { fqdn | ip } | { issuer-name | No restriction exists on the issuer certificate subject name, or subject-name } { dn | fqdn | ip } } name, certificate subject name alternative subject name. { ctn | equ | nctn | nequ } and alternative subject name by attribute-value default. 4. Return to system view. 5. Create a certificate attribute access control policy and enter its view. quit N/A pki certificate access-control-policy No access control policy exists by policy-name default. 6. Configure a certificate attribute access control rule. rule [ id ] { deny | permit } group-name No access control rule exists by default. A certificate attribute group must exist to be associated with a rule. Displaying and maintaining PKI 166