From the course: Windows Server 2016: Active Directory Certificate Services
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Configure CRL distribution points - Windows Server Tutorial
From the course: Windows Server 2016: Active Directory Certificate Services
Configure CRL distribution points
- [Instructor] At this stage in configuring our Certificate Authority, I would like to compare an issued certificate to a license to drive. Now, driver's licenses have several tamper-proof or easily recognized features that allow a trained eye to prove easily enough that the license was issued by a trusted authority. But what you can't tell by simply looking at the license, is whether it's been suspended or revoked since it was issued. To know that, you would have to have a list of bad licenses to check it against. When it comes to certificates, that list of suspended or revoked licenses is called a Certificate Revocation List, or CRL. That CRL is maintained by the Certificate Authority, and published so that it can be verified by other servers or work stations that may need to evaluate the certificate. So here we are, back on our Subordinate Certificate Authority. Remember that it couldn't verify its signing certificate was valid, because it couldn't find a revocation list. So let's…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.