Manualshelf

System information

ManualsBrandsRed Hat ManualsOtherCERTIFICATE SYSTEM 8 - AGENTS GUIDE
61626364656667686970
Figure 5.7. Update Certificate Revocation List
3. Select the algorithm to use to sign the new CRL. Before choosing an algorithm, make sure
that any system or network applications that need to read or view this CRL support the
algorithm.
SHA-1 with RSA generates a 160-bit message digest.
SHA-256 with RSA.
SHA-512 with RSA.
MD5 with RSA generates a 128-bit message digest. Most existing software applications
that handle certificates support only MD5. This is the default algorithm.
MD2 with RSA generates a 128-bit message digest.
Before selecting an algorithm, make sure that the Certificate System has that algorithm
enabled. The Certificate System administrator will have that information.
4. To examine the CRL before updating it, click Display.
The CRL appears in the browser window, allowing the agent to check whether a particular
certificate appears in the list. Use the browser's Back button to return to the Update page.
Chapter 5. CA: Finding and Revoking Certificates
56