Home > Community > Technology > Security > Bulk Revoke SCEP Certificates in Clearpass

Security

Reply
Topic Options
peterp
Contributor I
peterp
Posts: 21
Registered: ‎02-26-2016

Bulk Revoke SCEP Certificates in Clearpass
Options

‎02-26-2016 11:29 AM

I'm looking for a way to bulk revoke certificates in ClearPass.

 

I know it is possible to automatically revoke onboarded certificates that havent been used in x days, but I'm looking to do this with certificates which have been created via SCEP.

 

What I'd like to do is remove all of username x's certificates and all certificates before y date.

 

For example, revoke all of peter's certificates created before 1/1/2016.

 

Automatically revoking SCEP certificates that havent been used in X days would be a huge win as well.

Alert a Moderator
Message 1 of 2 (501 Views)
Reply
0 Kudos
simonh
Occasional Contributor I
simonh
Posts: 7
Registered: ‎02-12-2016

Re: Bulk Revoke SCEP Certificates in Clearpass
Options

‎03-01-2016 08:08 AM

Anyone have a way to do this that's not "scraping the website"?

 

It seems that SCEP requests get added to the CP Database as individual devices like "anonymous:14269" which makes it impossible to easily identify these.

 

This becomes really difficult when a slightly overzealous SCEP profile deploy suddenly cuts a couple of thousand redundant certificates :)

Alert a Moderator
Message 2 of 2 (429 Views)
Reply
0 Kudos
Search Airheads
turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

© Copyright 2017 Hewlett Packard Enterprise Development LP
Powered by Lithium