-
Notifications
You must be signed in to change notification settings - Fork 139
UpdateCRL Service
Endi S. Dewata edited this page May 25, 2023
·
6 revisions
The UpdateCRL service can be used to force the update of the CRL.
-
Operation:
POST /ca/agent/ca/updateCRL
-
Authentication: Client certificate
$ curl \ --cert-type P12 \ --cert ~/.dogtag/pki-tomcat/ca_admin_cert.p12:Secret.123 \ -sk \ -d "xml=true" \ https://$HOSTNAME:8443/ca/agent/ca/updateCRL \ | xmllint --format - <?xml version="1.0" encoding="UTF-8" standalone="no"?> <xml> <header> <crlIssuingPoint>MasterCRL</crlIssuingPoint> <crlUpdate>Scheduled</crlUpdate> </header> <fixed/> <records/> </xml>
$ curl \ --cert-type P12 \ --cert ~/.dogtag/pki-tomcat/ca_admin_cert.p12:Secret.123 \ -sk \ -d "crlIssuingPoint=MasterCRL&waitForUpdate=true&clearCRLCache=true&customFutureThisUpdateDateValue=2020:9:22:13:0:0&xml=true" \ https://$HOSTNAME:8443/ca/agent/ca/updateCRL \ | xmllint --format - <?xml version="1.0" encoding="UTF-8" standalone="no"?> <xml> <header> <crlIssuingPoint>MasterCRL</crlIssuingPoint> <time>47</time> </header> <fixed/> <records/> </xml>
$ curl \ --cert-type P12 \ --cert /root/.dogtag/pki-tomcat/ca_admin_cert.p12:Secret.123 \ -sk \ -d "crlIssuingPoint=MasterCRL&waitForUpdate=true&clearCRLCache=true&cancelCurCustomFutureThisUpdateValue=true&xml=true" \ https://$HOSTNAME:8443/ca/agent/ca/updateCRL \ | xmllint --format - <?xml version="1.0" encoding="UTF-8" standalone="no"?> <xml> <header> <crlIssuingPoint>MasterCRL</crlIssuingPoint> <time>52</time> </header> <fixed/> <records/> </xml>
Tip
|
To find a page in the Wiki, enter the keywords in search field, press Enter, then click Wikis. |