07-03-2019 07:12 AM
Hi everyone,
If I'd like to check more than one FQDN for a CRL prior to authenticating a trusted certificate, is this supported? As far as I can tell the documentation doesn't define this field as a list but as a single URL.
Example: myCDP1.mydomain.com/CRL.crl, myCDP2.mydomain.com/CRL.crl
Thanks!
Solved! Go to Solution.
07-03-2019 12:25 PM
This is not currently support. I got validation error when attempting to squeeze in multiple URIs into a single text field.
View solution in original post
07-04-2019 02:01 PM
Thanks for the quick reply.
That's unfortunate, it can mean a single point of failure for any communication based on that trusted certificate (including dot1x and secure syslog).
Any idea how this can be remediated without a load balancer?
07-04-2019 02:46 PM
I think it possible to do DNS load balancing or AnyConnect, although I have not personally configured either.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
