| bindsslcacertgroup_certkey |
Use this method to bind certkey to ssl caCertGroup. |
Syntax |
Parameters |
cacertgroupname |
Name given to the CA certificate group. The name will be used to add the CA certificates to the group. Must begin with an ASCII alphanumeric or underscore (_) character, and must contain only ASCII alphanumeric, underscore, hash (#), period (.), space, colon (:), at (@), equals (=), and hyphen (-) characters. The following requirement applies only to the Citrix ADC CLI: If the name includes one or more spaces, enclose the name in double or single quotation marks (for example, "my file" or 'my file'). This is mandatory parameter. |
certkeyname |
Name of the certificate-key pair. This is mandatory parameter. |
crlcheck |
Rule to use for the CRL corresponding to the CA certificate during client authentication. Available settings function as follows:
* MANDATORY - Deny SSL clients if the CRL is missing or expired, or the Next Update date is in the past, or the CRL is incomplete.
* OPTIONAL - Allow SSL clients if the CRL is missing or expired, or the Next Update date is in the past, or the CRL is incomplete, but deny if the client certificate is revoked in the CRL. Default value = CRLCHECK_OPTIONAL. Possible Values : Mandatory, Optional. |
ocspcheck |
Rule to use for the OCSP responder associated with the CA certificate during client authentication. If MANDATORY is specified, deny all SSL clients if the OCSP check fails because of connectivity issues with the remote OCSP server, or any other reason that prevents the OCSP check. With the OPTIONAL setting, allow SSL clients even if the OCSP check fails except when the client certificate is revoked. Possible Values : Mandatory, Optional. |
Return Value |
Returns simpleResult |
See Also |