HP-UX Reference (11i v2 07/12) - 1M System Administration Commands N-Z (vol 4)
s
swa-step(1M) swa-step(1M)
The use of ${user_dir} at the beginning of this option value is substituted with the value of the
user_dir option (which defaults to $HOME/.swa ).
-x catalog_source=https://ftp.itrc.hp.com/wpsl/bin/doc.pl/
screen=wpslDownloadPatch/swa_catalog.xml.gz?PatchName=
/export/patches/swa_catalog.xml.gz
Usage: Intermediate
Applicable steps: catalog
A space-separated list of URLs (appropriately quoted for your shell if applicable) that controls the
remote location and service to obtain the remote HP software catalog. The catalog contains a list of
all potential issues, relevant software product updates and patches that address many issues, along
with descriptions of manual actions that address some issues. HP frequently updates this catalog as
new issues become known and as new actions are recommended.
The following format is used to specify URLs:
service://[user:password@
]hostname.domainname:port
Where service is one of the following methods for obtaining the remote catalog from HP:
https Secure/authenticated HTTP
http Unauthenticated HTTP
ftp Unauthenticated FTP
Note: The following are alternative, though less-secure, unauthenticated paths to the standard HP
catalog file:
http://ftp.itrc.hp.com/wpsl/bin/doc.pl/screen=wpslDownloadPatch/
swa_catalog.xml.gz?PatchName=/export/patches/swa_catalog.xml.gz
ftp://ftp.itrc.hp.com/export/patches/swa_catalog.xml.gz
-x crl_check=true
Usage: Advanced
Applicable steps: catalog download
When set to true, SWA will require the Certificate Revocation List (CRL) to be updated and checked
for the trusted Certificate Authority (CA) certificate being used to validate the remote server.
In the unlikely event that the private certificate of the server pointed to by the
catalog_source
option is suspected of being compromised, its certificate will be revoked, and added to a list of revoked
certificates by the CA. See the catalog_source
option.
The CRL must be signed by the same certificate chain that signed the host certificate being checked.
Checking the CRL requires regular downloads from the CA, which can lengthen the SWA run time. If
you do not wish to validate a revocation list, set this to
false.
-x crl_url=http://crl.verisign.com/RSASecureServer.crl
Usage: Advanced
Applicable steps: catalog download
The URL of the CRL. See the crl_check option for more information. If you are behind a proxy
server, then you will need to configure the proxy information for the protocol being used to download
the CRL.
-x download_cmd=
Usage: Intermediate
Applicable steps: catalog download
Specifies a command that can download a URL from the Internet. The command is enclosed in single
quotes (’). This option is useful in cases where a system does not have a direct connection to the Inter-
net, but can execute a command that can download a URL from the Internet (for example, by using a
gateway machine).
Using this option overrides many options which are used by the internal SWA download functionality,
including proxy and CRL configuration.
HP-UX 11i Version 2: December 2007 Update − 5 − Hewlett-Packard Company 401