1 sushma.fernandes 1.1 .\" $Header: /cvs/MSB/pegasus/rpm/manLinux/man1m.Z/cimcrl.1m,v 1.1 2006/08/15 19:46:34 Sushma Exp $
2 .TA c \" lowercase initial letter of .TH name
3 .TH cimcrl 1M
4 .SH NAME
5 cimcrl \- Add, remove or list X509 Certificate Revocation Lists in a PEM format CRL store.
6 .SH SYNOPSIS
7
8 .B cimcrl
9 -a -f file
10
11 .B cimcrl
12 -r -i issuer
13
14 .B cimcrl
15 -l [ -i issuer ]
16
17 .B cimcrl
18 --help
19
20 .B cimcrl
21 --version
22 sushma.fernandes 1.1
23 .SS Remarks
24 The cimcrl command requires that the cimserver is running. This command operates on a CRL store on the local system only.
25
26 .SH DESCRIPTION
27 The cimcrl command provides a command line interface to manage X509 CRLs in the CRL store. The CRL store contains the CRLs used to revoke certificates in the CIM Server truststore. For more information on truststore operations see the cimtrust(1m) command.
28
29 The add option of the cimcrl command adds an X509 CRL from the specified
30 \fPfile \fP to the CRL store. If a CRL for the specified issuer already exists in the CRL store, the CRL is replaced with the specified CRL.
31
32 .PP
33 The remove option of the cimcrl command removes the X509 CRL matching the specified
34 .B issuer
35 from the CRL store.
36 .PP
37 The list option of the cimcrl command lists the X509 CRLs
38 in the CRL store. The list can be filtered by
39 .B issuer.
40 .SS Options
41 .B cimcrl
42 recognizes the following options:
43 sushma.fernandes 1.1 .RS
44 .TP 15
45 .B -a
46 Adds a CRL to the truststore. If the specified
47 .B file
48 does not contain a valid X509 CRL an error message is returned
49 and no action is taken. If the CRL for the specified issuer already exists
50 in the CRL store, it is replaced with the CRL in the specified
51 .B file
52 .TP
53 .B -r
54 Removes a CRL from the truststore. If no CRL exists for the specified
55 .B issuer
56 , an error message is returned and no action is taken.
57 .TP
58 .B -l
59 Displays the X509 CRLs in the truststore.
60 .TP
61 .B -f file
62 Specifies a PEM format file containing an X509 CRL.
63 .TP
64 sushma.fernandes 1.1 .B -i issuer
65 Specifies the issuer name of the CRL.
66 .TP
67 .B --help
68 Displays the command help message.
69 .TP
70 .B --version
71 Displays the CIM Server version.
72 .SH EXIT STATUS
73 When an error occurs, an error message is written to the standard error
74 stream and a non-zero exit status value is returned. The following exit
75 status values are defined:
76 .RS
77 .TP
78 .B 0
79 Success
80 .PD
81 .TP
82 .B 1
83 General error
84 .PD
85 sushma.fernandes 1.1 .TP
86 .B 2
87 Connection failed
88 .PD
89 .TP
90 .B 3
91 Connection timed out
92 .PD
93 .TP
94 .B 4
95 CRL does not exist
96 .PD
97 .RE
98 .SH EXAMPLES
99 Add the CRL in class1crl.pem to the CRL store:
100
101 cimcrl -a -f class1crl.pem
102
103 Remove the CRL for a specified issuer:
104
105 cimcrl -r -i "/C=US/ST=California/L=Cupertino/O=Smart & Secure/OU=Secure Software Division/CN=dev.admin.ss.com"
106 sushma.fernandes 1.1
107 List all the X509 CRLs in the trust store:
108
109 cimcrl -l
110
111 .SH SEE ALSO
112 .PP
113 cimserver(8), cimtrust(1m), cimconfig(1m).
|