security vpn l2tp remote-access ipsec-settings authentication x509 crl-file <file-name>

Specifies the name of an X.509 Certificate Revocation List (CRL) file for IPsec authentication on L2TP VPN remote access connections.

set security vpn l2tp remote-access ipsec-settings authentication x509 crl-file file-name

delete security vpn l2tp remote-access ipsec-settings authentication x509 crl-file

show security vpn l2tp remote-access ipsec-settings authentication x509 crl-file

file-name: The name of the CRL file.

Configuration mode


security {
       vpn {
          l2tp {
             remote-access {
                ipsec-settings {
                   authentication {
                      x509 {
                         crl-file file-name
                   }     
                }    
             }   
          }  
       } 
    }
}

Use this command to specify the name of a Certificate Revocation List (CRL) file.

A CRL is a time-stamped signed data structure issued by the Certificate Authority (CA) identifying revoked certificates. When the remote user attempts to log on to the system, the system checks both the remote user's certificate signature and also the CRL to make sure that the remote user's certificate serial number is not on the CRL.

The file is assumed to be in /config/auth unless an absolute path is specified.

Use the set form of this command to specify the location of the CRL file.

Use the delete form of this command to remove the location of the CRL file.

Use the show form of this command to display CRL file configuration.

Vyatta documentation

Learn how to install, configure, and operate the Vyatta Network Operating System (Vyatta NOS) and Orchestrator, which help drive our virtual networking and physical platforms portfolio.

security vpn l2tp remote-access ipsec-settings authentication x509 crl-file <file-name>

Helpful Links

Key Resources