HTTP or HTTPS for external CRL location
Hello,I has a quick question concerning an external CRL location I will be using. Since I plan on using a webdav/IIS Virtual directory for the CRL updates, when it comes time to put the HTTP:// path in the certs, can I use HTTPS instead? I wanted to enforce using SSL on the Webdav directory if possible, but didnt want to jeopordize clients not being able to auto update CRLs.Is this possible?Thanks in advance
September 11th, 2009 6:35pm

Use HTTP since Microsoft clients no longer support HTTPS for downloading CRLs.Think about it, you are setting up a chicken and the Egg scenario.1) I need to download the CRL2) Oh the site is protected by SSL3) Look the SSL certificate has a CDP extension.4) Goto Step 1Remember that a CRL is a public domain object and contains non-privacy information. Brian
Free Windows Admin Tool Kit Click here and download it now
September 11th, 2009 9:55pm

Yeah thats what i was afraid of :)I will just leave it as http.Thanks Brian.
September 12th, 2009 12:01am

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics