Configure the CRL Method

Use the CRL method for revocation checking.

Procedure

  1. In the system web interface, go to Admin Settings > Security > Certificates > Revocation.
  2. Configure the following settings and select Save.
    Setting Description
    Revocation Method To use the CRL revocation method, select CRL.
    Allow Incomplete Revocation Checks When enabled, a certificate in the chain of trust validates without a revocation check if no corresponding CRL from the issuing CA is installed.
    Add CRL Browse for and select a CRL to install.
  3. View automatically and manually downloaded CRLs on the page.
    Make sure to install CRLs from each CA that issued the certificates on your system.
  4. Optional: To delete a CRL from the list, select Remove.