Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Microsoft CA and Active Directory CRL

We have been working on getting our routers to bring up a DMVPN using a Microsoft CA and Active Directory CRL. If we configure the routers to by-pass the CRL revocation check it will come up (revocation-check crl none). If we require the CRL which is stored in Active Directory it fails every time (revocation-check crl).

Has anyone been able to use a Active Directory CRL LDAP URL?

Thanks for the help in advanced!

1 REPLY
Community Member

Re: Microsoft CA and Active Directory CRL

You should better announce crl to http and then IOS can successfully take it via scep instead of ldap.

Maxim

342
Views
0
Helpful
1
Replies
CreatePlease to create content