Outputting the revocation status check results to syslog

Ops Center Installation and Configuration Guide

Version
11.0.x
Audience
anonymous
Part Number
MK-99OPS001-23
Output the revocation status of the server certificate to syslog as follows.
  1. Register a command in cron for each product whose revocation status you want to check.
    For details on how to specify the command, see Sending the revocation status check results to a file. To output the results to syslog, you do not need to specify the -out option.
  2. Change the crond settings. Open crond in a text editor such as vi editor and add -s to the CRONDARGS value.
    If you use the default value, the check results will be output to /var/log/cron.
    CRONDARGS=-s
  3. Restart the service to apply the crond settings. Run the following command.
    systemctl restart crond

At the specified time, the results are output to syslog. Search the syslog file for Cert Status. The result will be good, revoked, or unknown.