crl-check

Enables a CRL check on this RADIUS server policy. A CRL is a list of revoked certificates issued and subsequently revoked by a CA (Certification Authority). Certificates can be revoked for a number of reasons including failure or compromise of a device using a certificate, a compromise of a certificate key pair or errors within an issued certificate. The mechanism used for certificate revocation depends on the CA.

This option is disabled by default.

Supported on the following devices:

Access Points: AP5010, AP310i/e, AP410i/e, AP505i, AP510i, AP510e, AP560i, AP6522, AP6562, AP7161, AP7502, AP7522, AP7532, AP7562, AP7602, AP7612, AP7622, AP763, AP7662, AP8163, AP8543, AP8533.
Service Platforms: NX5500, NX7500, NX9500, NX9600
Virtual Platforms: CX9000, VX9000

Syntax

crl-check

Parameters

None

Examples

nx9500-6C8809(config-radius-server-policy-test)#crl-check

nx9500-6C8809(config-radius-server-policy-test)#show context
radius-server-policy test
 authentication eap-auth-type tls
 crl-check
nx9500-6C8809(config-radius-server-policy-test)#

Related Commands


no	Disables CRL check on a RADIUS server policy