HI, Is there any way to set the pkinit_revoke setting in a realm to look at the CRL distribution point in a certificate and download the CRL from there automatically? This would avoid the need to distribute up to date CRLs everywhere they are needed.
Yes I could write a script to get the CRL distribution point from the cert and periodically download the CRL but I was wondering if kerberos already has this feature built in? Thanks, -- Bram Cymet Software Developer Canadian Bank Note Co. Ltd. Cell: 613-608-9752 ________________________________________________ Kerberos mailing list [email protected] https://mailman.mit.edu/mailman/listinfo/kerberos
