Revoking Client Certificates Issued within your Own Organization 117>> Revocation# importSelect protocol (tftp/ftp/scp/sftp) [tftp]: ftpEnter host or IP address of server: 192.168.128.20(example)Enter name of file on server (PEM, DER or ASCII format):crl.derRetrieving crl.der from 192.168.128.20Received 12628 bytes in 0.1 secondsCertificate revocation list found in der formatRevocation list added.Use ’apply’ to activate changes.3 Apply your changes.>> Revocation# applyChanges applied successfully.--End--Revoking Client Certificates Issued within your Own OrganizationStep Action1 Specify the CA certificate, to which you want to add a CRL.Specify the certificate number that represents the CA certificateof the certificate used for generating the client certificate youwant to revoke. To view basic information about availablecertificates, use the /info/certs command.>> Main# cfg/certEnter certificate number: (1-) 1 (example)>> Certificate 1# revoke2 Add the serial number of a specific client certificate torevoke.>> Revocation# addEnter serial number to revoke:To add serial numbers in hexadecimal form, enter addx insteadof add.Nortel VPN GatewayUser GuideNN46120-104 02.01 Standard14 April 2008Copyright © 2007-2008 Nortel Networks.