Filter
Top Products
Getting Started with ETEMS
94 EncrypTight User Guide
Ignore CRL access
failure
When enabled, allows EncrypTight to set up communication with a
component even when it cannot access the certificate revocation list (CRL)
associated with the certificate presented by the component. This option is
enabled by default. Note that if OCSP is enabled, this option is invalid and
not available. For more information about CRLs, see “Validating Certificates
Using CRLs” on page 287.
CRL File Location Specifies the location on the management workstation where you want to
store CRLs.
Enable Certificate
Policy Extensions
Specifies that EncrypTight checks certificates for the presence of the
certificate policies extension and enforces the restrictions specified, if any.
For more information on certificate policy extensions, see “Configuring the
Certificate Policies Extension” on page 269.
Certificate Policy
Extension OIDs
After you enable certificate policies extension, enter the allowed OIDs in the
box, separating each with a comma.
Table 25 Strict authentication communication preferences