|
Posted by =?Utf-8?B?Q2lwaGVyVGVLU1Q=?= on September 24, 2006, 3:39 am
If you were Registered and logged in, you could reply and use other advanced thread options
A CRL is a list of revoked certificates. If you are asking about changing the
expiration date on a certificate, you have to do that on the actual
certificate. If you are asking about how to schedule the publication of the
CRL or the Validity period. You can go into the CA mmc and click on revoked
certs then click Action/properties go to CRL pulication interval and choose
you time interval for automatically publishing the CRL. Although the validty
period is different from the publishing schedule so the validity period will
exceed the publishing schedule by a 10% time difference to allow for
directory replication.
Here is a link on how to do this...
http://technet2.microsoft.com/WindowsServer/en/library/9c94d5e4-e1e8-49fc-9df2-578afc10c1911033.mspx?mfr=true
Goodluck...
--
CipherTeKST
MCSE: Security 2003, CCNA, Security+
"Mr555" wrote:
> Hello everyone.
>
> Recently I have re-engineered a new certificate server to Windows 2003
> Server.
> The purpose of our certificate server are for authenticate VPN connection.
> We use net screen 50 VPN/firewall.
> Our VPN connection is working fine until our CRL list expired, The VPN stops
> working. I regenerated a new CRL and imports it back to our netscreen
> firewall. The r VPN is running again. I notices our CRL only last for 1 week.
> I generated a new CRL today and will expire on the 2 of August 2006. is there
> anyway I can change the CRL expiry date ?
>
> I will be very appreciate it if someone could give me some help
>
> Thank you
>
> Mr555
>
| 
XML site map