For all admins which will use openca + scep + cisco
I found out, that Cisco Router use only the first CRL from the CA
Certificate, that can configured in config.xml as
<name>CRLDistributionPoints</name>
<value>
URI.2=http://CRLDistributionPoints.XXX.de/pub/crl/cacrl.crl
</value>
If you give more (URI.1, URI.3,...), only the first one would be shown
#sh crypto ca cert
CA Certificate
Status: Available
Certificate Serial Number: ...
Key Usage: General Purpose
Issuer:
EA = ...
C = DE
Subject:
EA = ...
C = DE
CRL Distribution Point:
http://CRLDistributionPoints.XXX.de/pub/crl/cacrl.crl
Validity Date:
start date: 16:02:01 UTC Dec 20 2005
end date: 16:02:01 UTC Dec 28 2015
Regards Herbert Draht
--
Lust, ein paar Euro nebenbei zu verdienen? Ohne Kosten, ohne Risiko!
Satte Provisionen für GMX Partner: http://www.gmx.net/de/go/partner
-------------------------------------------------------
This SF.net email is sponsored by: Splunk Inc. Do you grep through log files
for problems? Stop! Download the new AJAX search engine that makes
searching your log files as easy as surfing the web. DOWNLOAD SPLUNK!
http://ads.osdn.com/?ad_id=7637&alloc_id=16865&op=click
_______________________________________________
Openca-Users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openca-users
