cpca_client get_crldp

Description

Shows the Fully Qualified Domain Name (FQDN) configured for the Internal Certificate Authority (ICA) with the "cpca_client get_crldp" command.

The Management Server uses this FQDN:

  1. To configure the Certificate Revocation List Distribution Point (CRL DP) property in all certificates that the ICA generates.

  2. To create the URL for accessing the CRL.

    Example: http://MyMGMT.checkpoint.com:18264/ICA_CRL1.crl

Note:

On a Multi-Domain Server, you must run this command in the context of the applicable Domain Management Server:

mdsenv <IP Address or Name of Domain Management Server>

Syntax

cpca_client [-d] get_crldp [-p <ICA port number>]

Parameters

Parameter

Description

-d

Runs the command in debug mode.

Use only if you troubleshoot the command itself.

Best Practice - If you use this parameter, then redirect the output to a file, or use the script command to save the entire CLI session.

-p <ICA port number>

Optional.

Specifies the TCP port on the Security Management Server or Domain Management Server, which is used to connect to the Certificate Authority.

The default TCP port number is 18264.

Example

[Expert@MyMGMT:0]# hostname
MyMGMT
[Expert@MyMGMT:0]#
 
[Expert@MyMGMT:0]# domainname
checkpoint.com
[Expert@MyMGMT:0]#
 

[Expert@MyMGMT:0]# cpca_client get_crldp
MyMGMT.checkpoint.com
[Expert@MyMGMT:0]