Manualshelf

HP VPN Firewall Appliances VPN Command Reference

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
141142143144145146147148149150
143
<Sysname> system-view
[Sysname] pki retrieval-crl domain 1
Related commands
pki domain
pki validate-certificate
Use pki validate-certificate to verify the validity of a certificate.
Syntax
pki validate-certificate { ca | local } domain domain-name
Views
System view
Default command level
2: System level
Parameters
ca: Verifies the CA certificate.
local: Verifies the local certificate.
domain-name: Name of the PKI domain to which the certificate to be verified belongs, a string of 1 to 15
characters.
Usage guidelines
The focus of certificate validity verification will check that the certificate is signed by the CA and that the
certificate has neither expired nor been revoked.
Examples
# Verify the validity of the local certificate.
<Sysname> system-view
[Sysname] pki validate-certificate local domain 1
Related commands
pki domain
root-certificate fingerprint
Use root-certificate fingerprint to configure the fingerprint to be used for verifying the validity of the CA
root certificate.
Use undo root-certificate fingerprint to remove the configuration.
Syntax
root-certificate fingerprint { md5 | sha1 } string
undo root-certificate fingerprint
Default
No fingerprint is configured for verifying the validity of the CA root certificate.