BIANCA-BRICK-CERT-MIB
File:
BIANCA-BRICK-CERT-MIB.mib (15646 bytes)
Imported modules
Imported symbols
Defined Types
CertServerEntry |
|
SEQUENCE |
|
|
|
|
certServerName |
DisplayString |
|
|
certServerUrl |
DisplayString |
|
|
certServerPreference |
INTEGER |
|
|
certServerType |
INTEGER |
|
CertEntry |
|
SEQUENCE |
|
|
|
|
certIndex |
INTEGER |
|
|
certDescription |
DisplayString |
|
|
certIsCA |
INTEGER |
|
|
certForceTrusted |
INTEGER |
|
|
certNoCrls |
INTEGER |
|
|
certSerialNumber |
DisplayString |
|
|
certSubjectName |
DisplayString |
|
|
certSubjectAltNames |
DisplayString |
|
|
certIssuerName |
DisplayString |
|
|
certIssuerAltNames |
DisplayString |
|
|
certValidity |
DisplayString |
|
|
certPubKeyInfo |
DisplayString |
|
|
certKeyId |
OCTET STRING |
|
|
certPrivateKey |
INTEGER |
|
|
certMD5Fingerprint |
OCTET STRING |
|
|
certSHA1Fingerprint |
OCTET STRING |
|
CertRevListEntry |
|
SEQUENCE |
|
|
|
|
certRevListIndex |
INTEGER |
|
|
certRevListDescription |
DisplayString |
|
|
certRevListIssuerName |
DisplayString |
|
|
certRevListIssuerAltNames |
DisplayString |
|
|
certRevListSerialNumber |
DisplayString |
|
|
certRevListValidity |
DisplayString |
|
|
certRevListNumCerts |
INTEGER |
|
Defined Values
org |
1.3 |
OBJECT IDENTIFIER |
|
|
|
dod |
1.3.6 |
OBJECT IDENTIFIER |
|
|
|
private |
1.3.6.1.4 |
OBJECT IDENTIFIER |
|
|
|
bintec |
1.3.6.1.4.1.272 |
OBJECT IDENTIFIER |
|
|
|
bibo |
1.3.6.1.4.1.272.4 |
OBJECT IDENTIFIER |
|
|
|
ipsec |
1.3.6.1.4.1.272.4.26 |
OBJECT IDENTIFIER |
|
|
|
cert |
1.3.6.1.4.1.272.4.26.33 |
OBJECT IDENTIFIER |
|
|
|
certGlobals |
1.3.6.1.4.1.272.4.26.33.1 |
OBJECT IDENTIFIER |
|
|
|
certGlobHttpProxy |
1.3.6.1.4.1.272.4.26.33.1.1 |
This object specifies the HTTP proxy server which must be used
to access the HTTP certificate servers defined. It takes either
an IP-address or a fully qualified domain name. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certGlobSocksServer |
1.3.6.1.4.1.272.4.26.33.1.2 |
This object specifies the SOCKS server which must be used to
access the HTTP and LDAP certificate servers defined. It takes
either an IP-address or a fully qualified domain name. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certGlobMaxCacheEntries |
1.3.6.1.4.1.272.4.26.33.1.3 |
This object specifies the maximum number of certificate-cache
entries allowed. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certGlobMaxPathLength |
1.3.6.1.4.1.272.4.26.33.1.4 |
This object specifies the maximum number of intermediate CA
certificates between a trusted root CA and a peer certificate
accepted. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certGlobMaxRestarts |
1.3.6.1.4.1.272.4.26.33.1.5 |
This object specifies the maximum number of restarts in one
certificate search. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certGlobMaxCertValidity |
1.3.6.1.4.1.272.4.26.33.1.6 |
This object specifies the maximum validity period of a
certificate in seconds. A certificate will not be considered
valid for a longer period of time even if its validity
field specifies a longer period. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certGlobMaxCrlValidity |
1.3.6.1.4.1.272.4.26.33.1.7 |
This object specifies the maximum validity period of a
certificate revocation list in seconds. A crl will not be
considered valid for a longer period of time even if its
validity field specifies a longer period. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certGlobNegCachePeriod |
1.3.6.1.4.1.272.4.26.33.1.8 |
This object specifies the period in seconds a certificate or
crl search with a negative result will be remembered. Within
this time, no new search will be performed for the same item. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certServerTable |
1.3.6.1.4.1.272.4.26.33.2 |
The certServerTable contains the list of certificate servers
used for certificate and crl requests. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CertServerEntry |
|
certServerEntry |
1.3.6.1.4.1.272.4.26.33.2.1 |
A certificate server entry defines the name of a certificate
server together with the protocols used to access it. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CertServerEntry |
|
|
certServerName |
1.3.6.1.4.1.272.4.26.33.2.1.1 |
This object specifies the name of a certificate server. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certServerUrl |
1.3.6.1.4.1.272.4.26.33.2.1.2 |
This object specifies the url used for accessing the
certificate server. Syntax:
[:][//[[:]@][:]]/[]
example: ldap://myname:mypass@ldap.ca.com:389/ . |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certServerPreference |
1.3.6.1.4.1.272.4.26.33.2.1.3 |
This object specifies the preference of this server
with respect to the others. Servers with lower priority
are accessed prior to others. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certServerType |
1.3.6.1.4.1.272.4.26.33.2.1.4 |
This object specifies the type of the entry and is used to
delete it. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
delete(1), server(2) |
|
certTable |
1.3.6.1.4.1.272.4.26.33.3 |
The certTable contains the list of certificates,
including own certificates and those of the trusted
certificate authorities. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CertEntry |
|
certEntry |
1.3.6.1.4.1.272.4.26.33.3.1 |
A certEntry contains either a peer's certificate, an
own certficate or a certificate of a trusted
certification authority, depending on the settings of
the certFlags field. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CertEntry |
|
|
certIndex |
1.3.6.1.4.1.272.4.26.33.3.1.1 |
A unique index of this certificate entry. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certDescription |
1.3.6.1.4.1.272.4.26.33.3.1.2 |
This object specifies the name of the X.509 Certificate. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certIsCA |
1.3.6.1.4.1.272.4.26.33.3.1.3 |
This object specifies how the certificate is treated internally.
Possible Values:
true(1), -- A certificate of a trusted root CA
false(2) -- An own or peer certificate. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
true(1), false(2) |
|
certForceTrusted |
1.3.6.1.4.1.272.4.26.33.3.1.4 |
This object specifies how the certificate is treated internally.
Possible Values:
true(1), -- Always trust this certificate without
-- considering any CAs
false(2) -- trust this certificate only, if there
-- exists a valid trust path from a CA to it
-- and it is not revoked. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
true(1), false(2) |
|
certNoCrls |
1.3.6.1.4.1.272.4.26.33.3.1.5 |
This object specifies how the certificate is treated internally.
Possible Values:
true(1), -- do not check for certificate revocation
-- lists for this CA (no meaning for non-CA
-- certificates)
false(2) -- check for certificate revocation
-- lists for this CA (no meaning for non-CA
-- certificates). |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
true(1), false(2) |
|
certSerialNumber |
1.3.6.1.4.1.272.4.26.33.3.1.6 |
This object specifies the serial number of the certificate. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certSubjectName |
1.3.6.1.4.1.272.4.26.33.3.1.7 |
The subject name of the certificate. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certSubjectAltNames |
1.3.6.1.4.1.272.4.26.33.3.1.8 |
The subject alternative name of the certificate. For IPSec,
this field (not the subject name) is taken by default as the
peer id, if not otherwise specified. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certIssuerName |
1.3.6.1.4.1.272.4.26.33.3.1.9 |
The name of the certificate authority which issued this
certificate. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certIssuerAltNames |
1.3.6.1.4.1.272.4.26.33.3.1.10 |
The alternative names of the certificate authority which issued
this certificate. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certValidity |
1.3.6.1.4.1.272.4.26.33.3.1.11 |
The validity period of this certificate in human readable form. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certPubKeyInfo |
1.3.6.1.4.1.272.4.26.33.3.1.12 |
This string shows the properties of the public key certified
in this certificate. These are the algorithm for which the key
is used and its length. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certKeyId |
1.3.6.1.4.1.272.4.26.33.3.1.13 |
The key id as contained in the extensions of the certificate,
if any. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
OCTET STRING |
|
|
certPrivateKey |
1.3.6.1.4.1.272.4.26.33.3.1.14 |
The index of the private key from the ipsecPublicKeyTable
corresponding to the public key in this certificate.
Used only for own certificates. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certMD5Fingerprint |
1.3.6.1.4.1.272.4.26.33.3.1.24 |
The fingerprint of the certificate computed as an MD5
hash of the DER encoded binary certificate data. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
OCTET STRING |
|
|
certSHA1Fingerprint |
1.3.6.1.4.1.272.4.26.33.3.1.25 |
The fingerprint of the certificate computed as an SHA1
hash of the DER encoded binary certificate data. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
OCTET STRING |
|
|
certRevListTable |
1.3.6.1.4.1.272.4.26.33.6 |
The certRevListTable contains the dynamic list of certificate
revocation lists currently cached by the system. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
SEQUENCE OF |
|
|
|
|
CertRevListEntry |
|
certRevListEntry |
1.3.6.1.4.1.272.4.26.33.6.1 |
This object describes a certificate revocation list (CRL)
currently in the systems dynamic CRL cache. |
Status: mandatory |
Access: not-accessible |
OBJECT-TYPE |
|
|
|
|
CertRevListEntry |
|
|
certRevListIndex |
1.3.6.1.4.1.272.4.26.33.6.1.1 |
A unique index of this CRL. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|
certRevListDescription |
1.3.6.1.4.1.272.4.26.33.6.1.2 |
This object specifies the name of the certificate
revocation list. |
Status: mandatory |
Access: read-write |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certRevListIssuerName |
1.3.6.1.4.1.272.4.26.33.6.1.3 |
The name of the certificate authority which issued this CRL. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certRevListIssuerAltNames |
1.3.6.1.4.1.272.4.26.33.6.1.4 |
The alternative names of the certificate authority which issued
this CRL. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certRevListValidity |
1.3.6.1.4.1.272.4.26.33.6.1.6 |
The issuing date of this CRL and the date the issuer is willing
to issue the net update in human readable form. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
DisplayString |
|
|
certRevListNumCerts |
1.3.6.1.4.1.272.4.26.33.6.1.7 |
The number of certificates contained in the CRL defined by this
entry. |
Status: mandatory |
Access: read-only |
OBJECT-TYPE |
|
|
|
|
INTEGER |
|
|