HP-UX IPSec version A.02.01 Administrator's Guide
Using Certificates with HP-UX IPSec
Step 5: Adding the CRL to HP-UX IPSec
Chapter 5172
-ldap
server_addr
The address of the LDAP server where the CRL is stored.
Default: None.
-port
port_number
TCP port number for the LDAP server.
Range: 1 - 65535.
Default: 389, the IANA registered TCP port number for LDAP.
-base
search_base
Search base for the CRL, in X.500 Distinguished Name (DN) format,
such as C=US,O=HP,OU=Lab. The search base with the search filter
appended to it form a search path to the location of the
certificationAuthority object in the LDAP directory. The CRL is stored as
an attribute of the certificationAuthority object.
The search base and search filter must not overlap. For example, the
value O=HP can be part of the search base or the search filter, but not
both.
If there are spaces in the DN, you must enclose the DN in double quotes
(““). For example, “C=US,O=My Company,OU=Blue Lab”.
Default: None. Both the
search_base
and the
search_filter
are
optional, but you must specify at least one of these parameters.
-filter
search_filter
Search filter for the CRL, in X.500 Distinguished Name (DN) format,
such as CN=CA.
If there are spaces in the DN, you must enclose the DN in double quotes
(““). For example, “CN=My CA”.
Default: None. Both the
search_base
and the
search_filter
are
optional, but you must specify at least one of these parameters.