Due to increased certificate security requirements for apple iOS, we have been told we need to turn on Certificate Revocation Checking in the SIP protocol config. Basically, Jabber users on iOS devices are being prompted to accept the certificate, because apple requires the CRL checking. I would like to move forward with turning on Automatic CRL updates.
I am trying to find out if we need to turn this on in both the C and the E servers and what is the possible impact of turning it on? We are currently hosting around 100 Jabber users at any time through MRA and have a couple handfuls of SIP B2B video streams going on at any time. I want to make sure I don't create any severe impact for our organization. Thank you for any guidance you can provide.