Manualshelf

R3721-F3210-F3171-HP High-End Firewalls VPN Configuration Guide-6PW101

ManualsBrandsHP ManualsComputer AccessoriesHP 7100/7200 IPsec dl Module
281282283284285286287288289290
279
Item Descri
tion
CRL Update Period
Enter the CRL update period, that is, the interval at which the PKI entity downloads the
latest CRLs.
This item is available when the Enable CRL Checking box is selected.
By default, the CRL update period depends on the next update field in the CRL file.
IMPORTANT:
The manually configured CRL update period takes precedent over that specified in the CRL
file.
CRL URL
Enter the URL of the CRL distribution point.
This item is available when the Enable CRL Checking box is selected.
When the URL of the CRL distribution point is not set, you should acquire the CA
certificate and a local certificate, and then acquire a CRL through SCEP.
IMPORTANT:
Currently, this item does not support domain name resolution.
Generating an RSA key pair
Select VPN > Certificate Management > Certificate from the navigation tree to display existing PKI
certificates, as shown in Figure 175. C
lick Create Key to enter the RSA key pair generation page, as
shown in Figure 176.
Figure 175 Certificate list
Figure 176 RSA key pair generation page