This task allows you to create a CRL Distribution Point object in eDirectory. This object can be created in any container in the eDirectory tree. As part of the creation process, you will be asked to provide a CRL. You will need to obtain a CRL from a third-party CA. If you don't have a CRL file at the time you create the CRL Distribution Point object, you can still create the object and import the CRL later.
To create a CRL Distribution Point object using ConsoleOne:
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Creating a CRL Object.
Start ConsoleOne.
Right-click in any container in the tree > click New > Object > cRLDistributionPoint, then click OK.
Type a name for the object, then click Next.
Paste a copy of the CRL into the field or read it from a CRL file.
Click Finish to create the object.
To create a CRL Distribution Point object using Novell iManager:
Launch Novell iManager.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Creating a CRL Object.
From the Roles and Tasks menu, click PKI Certificate Management > Create CRL Distribution Point.
Type a name for the object and provide the context where you want the object to reside.
Paste a copy of the CRL into the field or read it from a CRL file.
Click OK to create the object.
This task allows you to import a CRL signed by a third-party certificate authority into a CRL Distribution Point object. This option is only active if no CRL is present in the object.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Importing a third-party CRL.
Start ConsoleOne.
Double-click the CRL Distribution Point object that you want to import the CRL into.
Click Import.
If the Import button is not active, it means that this CRL Distribution Point object already contains a CRL. You can replace the existing CRL by clicking Replace.
Paste a copy of the CRL into the field or read it from a CRL file.
Click Finish.
You can export the CRL that is contained in the CRL Distribution Point object to a file.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Exporting a third-party CRL.
Start ConsoleOne.
Double-click the CRL Distribution Point object that you want to export the CRL from.
Click Export.
If the Export button is not active, it means that this CRL Distribution Point object does not contain a CRL. You can import a CRL by clicking Import.
Select the format you want to save the CRL to (binary encoded DER or text encoded Base64), then specify a filename.
The extension for the file is .crl by default. You can also browse to select the location that the file will be saved to.
Click Export.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights of this task, see Replacing a third-party CRL.
Start ConsoleOne.
Double-click the CRL Distribution Point object that contains the CRL you want to replace.
Click Replace.
If the Replace button is not active, it means that this CRL Distribution Point object does not contain a CRL. You can import a CRL by clicking Import.
Paste a copy of the new CRL into the field or read it from a CRL file.
Click Finish.
Log in to the eDirectory tree as an administrator with the appropriate rights.
To view the appropriate rights for this task, see Viewing a third-party CRL.
Start ConsoleOne.
Double-click CRL Distribution Point object.