I too have this issue however we also put an http path for the crl at an option in the certificate and I have specifically added the CRL path in the cisco ISE certificate UI.  Do those options not work as functional work arounds?

I'm trying to connect my Cisco switches to be monitored.  I have other devices setup to be monitored using SNMPv3 using AES256 so I know its not the monitoring system.  Additionally, I can perform a snmpwalk and it works if I specify AES-256-C instea...