From the course: Windows Server 2019: Active Directory Certificate Services

Unlock the full course today

Join today to access over 22,600 courses taught by industry experts or purchase this course individually.

Managing CRL distribution points

Managing CRL distribution points - Windows Server Tutorial

From the course: Windows Server 2019: Active Directory Certificate Services

Start my 1-month free trial

Managing CRL distribution points

- [Narrator] One of the most important features of a certificate that we haven't even touched yet is how to revoke one, or how other machines will know that a certificate is expired or revoked. The situation may happen that you issue a user certificate and then that user leaves your organization. You need to be able to cancel their certificate and systems that review that certificate need to know where to look to find out that it's been revoked. I'm going to open under the Tools menu the Certification Authority tool once again. And in this tool, I'm going to select the server and after right-clicking on it, go to the Properties. On the Extensions tab of the properties of our certification authority, we have the CRL settings, the Certificate Revocation List. This is where a list is maintained of all certificates that have been revoked and should no longer be accepted. There are a couple of different entries in here. One is a local path. That's the easiest way for the certification…

Contents