cp_conf ca

Description

This command changes the settings of the Internal Certificate Authority (ICA).

Note - On a Security Management Server, this command corresponds to the option Certificate Authority in the cpconfig menu.

Note:

On a Multi-Domain Server, you must run this command in the context of the applicable Domain Management Server:

mdsenv <IP Address or Name of Domain Management Server>

Syntax

cp_conf ca

-h

fqdn <FQDN Name>

init

Parameters

Parameter

Description

-h

Shows the applicable built-in usage.

fqdn <FQDN Name>

Configures the Fully Qualified Domain Name (FQDN) for the Internal Certificate Authority (ICA).

The "<FQDN Name>" is the text string in this format: hostname.domainname

Notes:

The existing certificates for configured objects are not revoked.
The existing ICA certificate is not changed.
The Management Server uses the specified "<FQDN Name>" to configure the Certificate Revocation List Distribution Point (CRL DP) property in all certificates that the ICA generates.

Refer to this command: cpca_client get_crldp

init

Initializes the Internal Certificate Authority (ICA).

Example

[Expert@MyMGMT:0]# hostname
MyMGMT
[Expert@MyMGMT:0]#
 
[Expert@MyMGMT:0]# domainname
checkpoint.com
[Expert@MyMGMT:0]#
 
[Expert@MyMGMT:0]# cp_conf ca fqdn MyMGMT.checkpoint.com
Trying to contact Certificate Authority. It might take a while...
Certificate was created successfully
MyMGMT.checkpoint.com was successfully set to the Internal CA
[Expert@MyMGMT:0]#