Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
630
Views
0
Helpful
2
Replies

Router to Router ipsec using Verisign CA - Not accepting CRL's.

raju_raghavan
Level 1
Level 1

‎12-04-2004 04:01 AM - edited ‎02-21-2020 01:29 PM

hi,

This is regarding establishing IPSEC tunnels using CA certificates.

The IPSEC tunnel is getting established after enrollment and installation of certificates.But even after revoking the certificates and generation of CRL the IPSEC tunnel still continues to establish.I have even tried removing crl optional command from the ca trustpoint configuration.

I am using the verisign CA server for certificate generation.

I would also like to know if router can accept CRL's through HTTP as the normal CLI accepts only crl's through LDAP.

Thanks and Regards

Raju Raghavan

Labels:
0 Helpful
2 Replies 2

umedryk
Level 5
Level 5

‎12-09-2004 12:53 PM

Router cannot accept CRLs through the http as is the case with normal cli.

0 Helpful

raju_raghavan
Level 1
Level 1
In response to umedryk

‎12-09-2004 10:13 PM

hi ,

Thanks a lot for the information.It would be great if you could let me have a URL which explains CRL revocation with VERISIGN CA's configuration.

Thanks

Raju

0 Helpful
Customers Also Viewed These Support Documents