crldp

This command controls support for the X.509 Certificate Distribution Point certificate extension.

Syntax

crldp { ignore | require }

Parameters

ignore: Ignores the certificate extension. This setting is the default value.
require: Indicates that a candidate certificate is deemed valid if the presented certificate chain ends with a trust anchor. This method is used only when the validation credentials are for SSL peer validation.

Guidelines

The crldp command controls support for the X.509 Certificate Distribution Point certificate extension. This noncritical certificate extension specifies how to obtain CRL information.

See RFC 2527 and RFC 3280 for information about certificate policies.

Examples

Create the ValCred-1 validation credentials that enable support the Certificate Distribution Point extension.
```
# valcred ValCred-1
Crypto Validation Credentials configuration
# crldp require
#
```
Restore the default state for the ValCred-1 validation credentials.
```
Crypto Validation Credentials configuration
# crldp ignore
#
```