Previous Topic: Certificate Revocation List Checking

Next Topic: Online Certificate Status Protocol Checking

Configure Certificate Revocation List Checking

You configure CRL checking to ensure that a user with an invalid client certificate cannot access a protected resource.

To configure CRL checking

  1. Open the certificate mapping.
  2. Select Perform CRL Checks from the Certificate Revocation List Checking group box.

    CRL-specific fields and controls open.

    Note: Click Help for descriptions of settings and controls, including their respective requirements and limits.

  3. Select the LDAP user directory that contains the CRL from the CRL Directory list.

    Note: If the LDAP user directory is not in the list, click Create to add the new directory connection.

  4. Complete the remaining settings, as necessary, and click Submit

    Certificate revocation list checking is enabled.


Copyright © 2010 CA. All rights reserved. Email CA about this topic