Chapter 19 Public Key Infrastructure
RSA Keys Window
19-16
Cisco Router and Security Device Manager 2.5 User’s Guide
OL-4015-12
• None—Do not perform a revocation check.
CRL Query URL
Enabled when CRL is selected. Enter the URL where the certificate revocation list
is located. Enter the URL only if the certificate supports X.500 DN.
OCSP URL
Enabled when OCSP is selected. Enter the URL of the OCSP server that you want
to contact.
Revocation Check, CRL Only
Specify how the router is to check whether a certificate has been revoked in this
window.
Verification
One of the following:
• None—Check the Certificate Revocation List (CRL) distribution point
embedded in the certificate.
• Best Effort—Download the CRL from the CRL server if it is available. If it
is not available, the certificate will be accepted.
• Optional—Check the CRL only if it has already been downloaded to the
cache as a result of manual loading.
CRL Query URL
Enter the URL where the certificate revocation list is located. Enter the URL only
if the certificate supports X.500 DN.
RSA Keys Window
RSA keys provide an electronic encryption and authentication system that uses an
algorithm developed by Ron Rivest, Adi Shamir, and Leonard Adelman. The RSA
system is the most commonly used encryption and authentication algorithm, and
is included as a part of Cisco IOS. To use the RSA system, a network host