cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
442
Views
0
Helpful
1
Replies

Microsoft CA and Active Directory CRL

pgustafson8235
Enthusiast
Enthusiast

We have been working on getting our routers to bring up a DMVPN using a Microsoft CA and Active Directory CRL. If we configure the routers to by-pass the CRL revocation check it will come up (revocation-check crl none). If we require the CRL which is stored in Active Directory it fails every time (revocation-check crl).

Has anyone been able to use a Active Directory CRL LDAP URL?

Thanks for the help in advanced!

1 Reply 1

Maxim Zimovets
Beginner
Beginner

You should better announce crl to http and then IOS can successfully take it via scep instead of ldap.

Maxim

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers