cpca_client get_crldp

Description

Shows the Fully Qualified Domain Name (FQDN) configured for the Internal Certificate Authority (ICAClosed Internal Certificate Authority. A component on Check Point Management Server that issues certificates for authentication.) with the "cp_conf ca" command.

The Management ServerClosed Check Point Single-Domain Security Management Server or a Multi-Domain Security Management Server. uses this FQDN:

  1. To configure the Certificate Revocation List Distribution Point (CRL DP) property in all certificates that the ICA generates.

  2. To create the URL for accessing the CRL.

    Example: http://MyMGMT.checkpoint.com:18264/ICA_CRL1.crl

Syntax

cpca_client [-d] get_crldp [-p <ICA port number>]

Parameters

Parameter

Description

-d

Runs the command in debug mode.

Use only if you troubleshoot the command itself.

Best Practice - If you use this parameter, then redirect the output to a file, or use the script command to save the entire CLI session.

-p <ICA port number>

Optional.

Specifies the TCP port on the Security Management ServerClosed Dedicated Check Point server that runs Check Point software to manage the objects and policies in a Check Point environment within a single management Domain. Synonym: Single-Domain Security Management Server. or Domain Management Server, which is used to connect to the Certificate Authority.

The default TCP port number is 18264.

Example

[Expert@MyMGMT:0]# hostname
MyMGMT
[Expert@MyMGMT:0]#
 
[Expert@MyMGMT:0]# domainname
checkpoint.com
[Expert@MyMGMT:0]#
 

[Expert@MyMGMT:0]# cpca_client get_crldp
MyMGMT.checkpoint.com
[Expert@MyMGMT:0]