Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 27 subscribers
  • Views 2482 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Certificate Revocation Lists

Clemilton Clementino 
Hello guys,
I noticed that after filling in the data for the standard XG 320 certificate, the default certificate appears in the certificate revocation list, with only the download option available. I did not understand that.
Can someone give me a hand? Can you explain this function to me or give me some documentation? I have not found anything so far.

Thank you.


This thread was automatically locked due to age.
Parents Reply Children
  • +1 in reply to Clemilton Clementino

    Hi Clemilton,

    The "Default" CA is the root CA for the XG for making custom signed certificates from the XG GUI in the certificates section. As mandated by the Certificate RFCs and IETFs, to check certificate validity some systems will look up a certificate revocation list to check if the cert has not been revoked by the CA.

    The purpose of the Certificate Revocation List is to host a list of certificates that have been revoked by the CA that generated them. The download option you see is so that you can host the CRL somewhere which would be part of the CRL discovery process.

    The fact it is showing there means everything is healthy and well, unless you are going to use the Default CA in anger, you can safely ignore that page :)

    Emile

  • 0 in reply to Emile Belcourt

    Hi Emile,

    Thank you very much for your help! Now i understand! [:D]

     

    Regards.