Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

CRL limitations on VPN 3015 concentrator

Hi,

I have installed a 3015 concentrator and configured caching for CRL but the CRL is larger than the CRL cache size on the 3015 (128KB). Users are authenticated and no CRL has been cached locally, obviously, it's size is around 750KB.

My question is if certs are still checked against the CRL on the CA or if no checking is done?

Also, is it possible to increase the default cache size of 128KB to 1MB like on bugID "CSCsd24463 Extend CRL capacity to 1MB on 3030 platform with 256MB RAM" after upgrading the mem to 256MB?

Thanks,

Niels

1 REPLY
Community Member

Re: CRL limitations on VPN 3015 concentrator

CRL checking in the concentrator Windows server would have to upgrade to Active Directory.

Try this link:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_administration_guide_chapter09186a00801f1dc5.html

115
Views
0
Helpful
1
Replies
CreatePlease to create content