In previous versions, if the Policy Server was configured to use the CRL Distribution Point (CDP) to locate a certificate revocation list (CRL), the only supported URL type was LDAP.
If the Policy Server is configured to use the CDP, the following URL types are now supported:
Note: The HTTP and HTTPS URL types are only supported for distribution points in certificates.
If an HTTPS distribution point is used, be sure that a valid CA public certificate or certificate bundle file is present in policy_server_home/config or the connection to the HTTPS server fails.
Specifies the Policy Server installation path.
Additionally, the certificate or certificate bundle must:
Note: For more information about the OpenSSL utility, see the OpenSSL documentation.
Note: For more information about configuring CRL checking, see the Policy Server Configuration Guide, the Programming Guide for C, or the Programming Guide for Perl.
STAR Issue: 17289899-2
Copyright © 2010 CA. All rights reserved. | Email CA about this topic |