Verifying certificates without CRL checking
Step | Command | Remarks |
|---|---|---|
1. Enter system view. | system-view | N/A |
2. Enter PKI domain view. | pki domain domain-name | N/A |
3. Disable CRL checking. | undo crl check enable | By default, CRL checking is enabled. |
4. Return to system view. | quit | N/A |
5. Obtain the CA certificate. | See "Obtaining certificates." | N/A |
6. Manually verify the validity of the certificates. | pki validate-certificate domain domain-name { ca | local } | This command is not saved in the configuration file. |