cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
572
Views
0
Helpful
3
Replies

Cisco ACS 5.3 not reading CRL from windows CA

g.peart
Level 1
Level 1

Hi All,

My ACS is performing EAP-TLS for users, but when I enable CRL download checking

authentication fails, I've tried converting the crl file to pem format but that doesn't work.

Yet I can download and read CRL from my browser,

Help appreciated.

3 Replies 3

blenka
Level 3
Level 3

ACS 5.4 introduces a new protocol, Online Certificate Status Protocol (OCSP), which is used to check the status of x.509 digital certificates. This protocol can be used as an alternate to the Certificate Revocation List (CRL). It can also address the issues that result in handling CRLs. For more information, see the Working with OCSP Services section in User Guide for Cisco Secure Access Control System 5.4.

Issue resolved. Basic error.

G.Peart, 

I'm having a similar issue, could you share your basic error?

 

Cheers.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: