Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1856
Views
0
Helpful
0
Replies

Anyconnect ignores crl check

sankafe01
Level 1
Level 1

‎11-06-2017 08:21 AM - edited ‎03-12-2019 04:42 AM

Hello,

Currently i'm facing the following problem:
When i'm trying to connect to vpn via website the crl check is performed and connection refused due to certificate is revokated.

But when i'm trying to connect via cisco anyconnect itself it completely ignores crl check and successfuly installs connection.

I've set Enable CRL check at AnyConnectLocalPolicy.xml

Also tried to set matching criteria (CRL_Sign), no effect too

Here is what i got at anyconnect log:

Connecting to vpn
Authorized Server List is not defined in local policy. Treating vpn as authorized.
Any configured local policy software and profile locks do not apply.
List of installed modules before update:
 VPNCore 4.2.00096
List of installed modules after update:
 VPNCore 4.2.00096

Any help would be appreciated and please do not hesitate to ask any additional information.

3 people had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents