Red Hat CERTIFICATE SYSTEM 7.3 - COMMAND-LINE Informacje Techniczne Pobierz pdf (Strona 83)

Key Usage Extension

The GenExtKeyUsage tool creates a base-64 encoded blob that adds ExtendedKeyUsage (OID

2.5.29.37) to the certificate. This blob is pasted into the certificate approval page when the

certificate is created.

1. Syntax

The GenExtKeyUsage tool has the following syntax:

GenExtKeyUsage [true|false] OID ...

Option Description

true | false Sets the criticality. true means the extension

is critical; false means it is not critical. The

criticality value is used during the certificate

validation process. If an extension is marked

as critical, then the path validation software

must be capable of interpreting that

extension.

OID The OID numbers that represent each

certificate type selected for the certificate.

Table 18.1.

For more information on the OIDs that can be used for each certificate type, refer to appendix A,

"Certificate and CRL Extensions," in the Certificate System Administrator's Guide.

Chapter 18.

1 2 ... 78 79 80 81 82 83 84 85 86 87 88 ... 103 104

Brak uwag

Red Hat CERTIFICATE SYSTEM 7.3 - COMMAND-LINE Informacje Techniczne Strona 83