Stephen Bowman wrote: > What determines the expire time of a CRL? > > I noticed that within the CRL there is a Next Update field.. is this > what it uses?
yes. You will probably want to make sure that you generate and distribute new CRLs on a schedule that leaves you with enough time to detect/correct failures before hitting the previous CRL's NextUpdate. --ben
signature.asc
Description: OpenPGP digital signature
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
