Skip to main content

security config ocsp disable

Contributors
Suggest changes

Disable OCSP for one or more selected applications

Availability: This command is available to cluster administrators at the advanced privilege level.

Description

The security config ocsp disable command disables the OCSP-based certificate status check for applications supporting SSL/TLS communications. For more information about the OCSP-based certificate status check for applications supporting SSL/TLS communications, see the security config ocsp show command.

Parameters

-application <SSL/TLS Application supporting OCSP>,…​ - Application Name (privilege: advanced)

Use this parameter to specify the application to disable the OCSP support. To disable all applications, the value 'all' can be used. Note: You cannot specify the value 'all' with other applications.

Examples

The following example disables the OCSP support for AutoSupport and EMS applications:

cluster1::*> security config ocsp disable -application autosupport,ems

cluster1::> security config ocsp show
Application          OCSP Enabled?
-------------------- -------------
autosupport          false
audit_log            true
fabricpool           true
ems                  false
kmip                 true
ldap                 true
ssh                  true
6 entries were displayed.

The following example disables the OCSP support for all applications:

cluster1::*> security config ocsp disable -application all
Warning: OCSP will be disabled for all applications. Any previous modifications
         will be ignored.
         Do you want to continue? {y|n}: y

cluster1::*> security config ocsp show
Application          OCSP Enabled?
-------------------- -------------
autosupport          false
audit_log            false
fabricpool           false
ems                  false
kmip                 false
ldap                 false
ssh                  false
6 entries were displayed.