On Wed, Nov 29 2017, Mark Pagnotta wrote:
> "DL connection error: schannel: next InitializeSecurityContext failed:
> unknown error (0x80092012) - The revocation function was unable to check
> revocation for the certificate" If I uncheck the "Verify SSL
> certificate" box, it all works normally.

That would be surprising. Any change you could share (even privately)
the server URL? I just need to perform a connection, so no credentials
are necessary.

> The https://dl.company.com/rest.php gives me a blank page in all browsers.

rest.php needs some extra configuration server-side to forward
authentication credentials to PHP. Errors here are visible on the server
logs, not on the client.

What kind of web server and PHP setup are you using?

> If the issue is in my PKI, I think that Internet Explorer would fail in
> its connection attempt as well (inetcpl has the "check revocations"
> option enabled). I'm not sure what other troubleshooting I can do. I
> can't seem to get any more information on why the client and addon
> connections are failing.

AFAIK, the old dl-wx client was built with an ancient version of
openssl which didn't support SNI. But the current version available
online does.

I never had CRL problems before, but we could easily have a check.

Reply via email to