pki certificate access-control-policy

Function

The pki certificate access-control-policy command creates the access control policy of certificate attributes and displays the PKI access configuration view.

The undo pki certificate access-control-policy command deletes the access control policy of certificate attributes.

By default, the action for the access control policy of certificate attributes is permit. That is, the certificate passes the verification.

Format

pki certificate access-control-policy policy-name

undo pki certificate access-control-policy policy-name

Parameters

Parameter	Description	Value
policy-name	Indicates the name of the access control policy of certificate attributes.	The value is a string of 1 to 31 case-sensitive characters, spaces not supported.

Parameter

Description

Value

policy-name

Indicates the name of the access control policy of certificate attributes.

The value is a string of 1 to 31 case-sensitive characters, spaces not supported.

Views

System view

Default Level

2: Configuration level

Task Name and Operations

Task Name	Operations
pki	write

Usage Guidelines

Usage Scenario

The access control policy of certificate attributes is an extra measure for certificate verification. Only the certificates meeting specific requirements can pass the verification, and then users' access rights are controlled elaborately.

Example

# Create policy1 as the access control policy of certificate attributes, and display the PKI access configuration view.

<HUAWEI> system-view
[~HUAWEI] pki certificate access-control-policy policy1