HP JetAdvantage Security Manager 10 Device E-LTU Manual de usuario descargar pdf (Pagina 15)

To support a variety of scenarios,

Microsoft Active Directory Certificate

Services (AD CS) supports industry-

standard methods of certificate

revocation. These include publication

of CRLs and Delta CRLs, which can be

made available to clients from a

variety of locations, including Active

Directory Domain Services (AD DS),

Web servers, and network file shares.

Depending on the number of

certificates issued and revoked by a

CA, the CRL can become quite large.

Smaller, interim CRLs can also be

published to address the size of the full

CRL. These smaller CRLs are referred

to as Delta CRLs and contain only the

certificates that have been revoked

since the last published update. The

CRL file is itself signed by the

authorized CA to prevent tampering.

The CRL is always issued by the

CA that issues the corresponding

certificates.

Certificate Revocation

To understand how the CRL is populated with revoked certificates, the task of revoking a certificate

will be briefly covered. Certificate revoking can be performed at the AD CS console or via command

line.

AD CS console

method: If the CA

administrator

determines a CA

signed certificate must

be revoked, the

process is fairly

simple. Signed

certificates are

located in the Issued

Certificates queue and

targeted for

revocation by serial

number. After the

appropriate certificate

is selected, right click

and select All Tasks,

1 2 ... 10 11 12 13 14 15 16 17 18 19 20 ... 30 31

Comentarios a estos manuales

Sin comentarios

HP JetAdvantage Security Manager 10 Device E-LTU Manual de usuario Pagina 15

Comentarios a estos manuales

Relacionado con productos y manuales para No HP JetAdvantage Security Manager 10 Device E-LTU