Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
312
Views
0
Helpful
2
Replies

VPN 3015 and CRL

rob.wright
Level 1
Level 1

‎11-25-2002 02:10 PM - edited ‎02-21-2020 12:11 PM

I have a 3015 which is setup to use a Microsoft certificate server. It doesn't work with the CRL though. I continue to get the message:

Unsupported CRL distribution point protocol

I have setup the CRL to use http port 80. When I try and get the crl myself I am able to with a web browser.

Is there anything special about setting up the crl to work in Microsoft.?

Labels:
0 Helpful
2 Replies 2

gfullage
Cisco Employee
Cisco Employee

‎11-25-2002 05:53 PM

What version of code are you running on the 3000? Only 3.6 supported CRL checking via HTTP.

If you go to the Admin - Certificate Mgmt - Configure CA Certificate screen, there's box options for which protocol to use, you can select HTTP in there. You cna then also enter in the URL and you should be good to go.

Read all about it here:

http://www.cisco.com/univercd/cc/td/doc/product/vpn/vpn3000/3_6/admin/certman.htm#xtocid4

0 Helpful

rob.wright
Level 1
Level 1
In response to gfullage

‎11-26-2002 07:55 AM

Found a document that states you have to be at 3.6 for http crl checking. So you were exactly right. We have upgraded and the crl is working now.

Thanks

0 Helpful
Customers Also Viewed These Support Documents