Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN 3015 and CRL

I have a 3015 which is setup to use a Microsoft certificate server. It doesn't work with the CRL though. I continue to get the message:

Unsupported CRL distribution point protocol

I have setup the CRL to use http port 80. When I try and get the crl myself I am able to with a web browser.

Is there anything special about setting up the crl to work in Microsoft.?

Cisco Employee

Re: VPN 3015 and CRL

What version of code are you running on the 3000? Only 3.6 supported CRL checking via HTTP.

If you go to the Admin - Certificate Mgmt - Configure CA Certificate screen, there's box options for which protocol to use, you can select HTTP in there. You cna then also enter in the URL and you should be good to go.

Read all about it here:

New Member

Re: VPN 3015 and CRL

Found a document that states you have to be at 3.6 for http crl checking. So you were exactly right. We have upgraded and the crl is working now.