Checking CRLs
一个CACertificate Authority or Certification Authority. Entity in a public key infrastructure system that issues certificates to clients. A certificate signing request received by the CA is converted into a certificate when the CA adds a signature generated with a private key. See digital certificate.maintains aCRLCertificate Revocation List. CRL is a list of revoked certificates maintained by a certification authority.that contains a list of certificates that have been revoked before their expiration date. Expired client certificates are not accepted for any user-centric network service. Certificates may be revoked because certificate key has been compromised or the user specified in the certificate is no longer authorized to use the key.
When a client certificate is being authenticated for a user-centric network service, themanaged devicechecks with the appropriateCACertificate Authority or Certification Authority. Entity in a public key infrastructure system that issues certificates to clients. A certificate signing request received by the CA is converted into a certificate when the CA adds a signature generated with a private key. See digital certificate.to make sure that the certificate has not been revoked.
Themanaged devicedoes not support download of CRLs. |