Search for	Example	Results
A single word	`cat`	Topics that contain the word "cat". You will also find its grammatical variations, such as "cats".
A phrase. You can specify that the search results contain a specific phrase.	`"cat food"` (quotation marks)	Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase.

Search for	Operator	Example
Two or more words in the same topic	`AND` `and` `+` (plus symbol) `&` (ampersand)	`cat AND dog` `"cat food"+milk` `"cat food"&"dog food"`
Either word in a topic	`OR` `or` `\|` (pipe)	`cat OR dog` `cat \| dog`
Topics that do not contain a specific word or phrase	`NOT` `not` `!` (exclamation point)	`NOT cat` `! dog`
Topics that contain one string and do not contain another	`^` (caret)	`cat ^ mouse`
A combination of search types	`( )` parentheses	`cat + (dog \| mouse)` `cat \| dog + (! mouse)`

Codar1.80

Configure certificate revocation

You will need to revoke a certificate if it has been compromised in any way or if an employee leaves your organization.

The following are the methods to revoke a certificate:

Configure Codar to use a Certificate Revocation List
Configure Codar to use Certificate Revocation List Distribution Point
ConfigureCodar to Use Online Certificate Status Protocol

Configure Codar to use a Certificate Revocation List

The following is an example of how to revoke a certificate that was generated by the certificate authority and publish a Certificate Revocation List (CRL) that contains this certificate ID in the list. The CRL must already exist. You will download and save it in a folder on the system where Codar is installed and point to its location using the ca-revocation-url parameters.

Copy the CRL file to the system where Codar is installed (for example, copy it to the
<crl_file_directory> directory).
In the CSA_HOME\jboss-as\standalone\configuration\ standalone.xml file, add the ca-revocation-url="<crl_file_directory>" attribute to the <ssl> element.

For example, change the following from:

<ssl name="ssl" key-alias="CSA" certificate-key-file="CSA_HOME\ jboss-as\standalone\configuration\.keystore" ca-certificate-file="CSA_JRE_HOME\lib\security\cacerts" verify-client="want"/>

to

<ssl name="ssl" key-alias="CSA" certificate-key-file="CSA_HOME\ jboss-as\standalone\configuration\.keystore" ca-certificate-file="CSA_JRE_HOME\lib\security\cacerts" verify-client="want" ca-revocation-url="<crl_file_directory>” />
Restart Codar service, see Restart Codar.
Log in to the Codar Console using a revoked certificate. The Secure Connection Failed message should display in the browser.

Configure Codar to use Certificate Revocation List Distribution Point

To enable a Certificate Revocation List Distribution Point (CRL DP), do the following:

Edit the CSA_HOME\jboss-as\standalone\configuration\ standalone.xml file and enable revocation and CRL DP by adding the following lines under <system-properties>:

<property name="com.sun.net.ssl.checkRevocation" value="true"/> <property name="com.sun.security.enableCRLDP" value="true"/>
Restart Codar service, see Restart Codar.

ConfigureCodar to Use Online Certificate Status Protocol

To enable the Online Certificate Status Protocol (OCSP), complete the following steps:

Edit the CSA_HOME\jboss-as\standalone\configuration\ standalone.xml file and enable revocation by adding the following line under <system‑properties>:

<property name="com.sun.net.ssl.checkRevocation" value="true"/>
Edit the CSA_JRE_HOME\lib\security\java.security file and uncomment the following line:

ocsp.enable=true
Restart Codar service, see Restart Codar.

Send Help Center feedback