HP JetAdvantage Security Manager 10 Device E-LTU Manual de usuario descargar pdf (Pagina 17)

CDP repositories can either be an LDAP or

HTTP location. This example shows CDP

configuration if CRL access is to occur via

HTTP. The CDP information is included in

the certificate when it is issued by the

Certificate Authority.

Any client receiving a signed certificate

from this CA would use this CDP

information to access the CRL. The image

below provides another example of CDP

information, this time using LDAP.

There are advantages to using HTTP over

LDAP and vice versa. One of the

advantages of using LDAP as a repository is

the high availability of the CRL through

Active Directory replication to all domain

controllers in the forest. One of the

advantages of using HTTP is because it is

firewall friendly and typically doesn’t

require authentication. Many customers

configure both HTTP and LDAP methods of

access for redundancy and comfort level. Now that basic certificate revocation has been covered,

the next section will cover the Security Manager assessment behavior as it relates to CRL access.

1 2 ... 12 13 14 15 16 17 18 19 20 21 22 ... 30 31

Sin comentarios

HP JetAdvantage Security Manager 10 Device E-LTU Manual de usuario Pagina 17