Previous Topic: Administrative UI and Policy Server Connections

Next Topic: CA SSO Authentication Scheme Supported on HP-UX

Certificate Revocation List Checking

In previous versions, if the Policy Server was configured to use the CRL Distribution Point (CDP) to locate a certificate revocation list (CRL), the only supported URL type was LDAP.

If the Policy Server is configured to use the CDP, the following URL types are now supported:

If an HTTPS distribution point is used, be sure that a valid CA public certificate or certificate bundle file is present in policy_server_home/config or the connection to the HTTPS server fails.

Additionally, the certificate or certificate bundle must:

Note: For more information about configuring CRL checking, see the Policy Server Configuration Guide, the Programming Guide for C, or the Programming Guide for Perl.

STAR Issue: 17289899-2


Copyright © 2010 CA. All rights reserved. Email CA about this topic