Configuring CRL Sources using GUI

You can configure the CRL sources to enable or disable checking the list of revoked certificates. You can add, update, and delete the CRL sources.

To configure the CRL sources, perform the following steps:

Procedure

Step 1

Click Network > CRL Sources.

Step 2

Click Add CRL Source to add a new CRL source.

The Add CRL (Certificate Revocation Lists) Source window is displayed.

Step 3

Enter the required parameters described in the following table to add a CRL source on Secure Email and Web Manager.

Parameter

Description

CRL File Name

Enter the name of the CRL source file.

CRL File Type

Enter the type of CRL source file. You can select ASN.1 (Abstract syntax notation 1) or PEM (Privacy Enhanced Mail) CRL file type.

Primary source URL to download a CRL file from

Enter the URL for the primary source of the file, including the filename.

For example, https://crl.example.com/certs.crl

Secondary source URL to use when the primary source is not available (optional)

Enter the URL for the secondary source of the file, including the filename. This field is optional.

Enable Scheduled auto update of CRL file

Enter the schedule to download the CRL source file.

Select Enable Scheduled auto update of CRL file to enable scheduled auto-update. You can select the Daily, Weekly, or Monthly option and specify the time (in 24-hour format) when the download must happen.

Test Source

Click Test CRL Source to test whether the CRL source file is updated successfully.

Note	The CRL source file is not downloaded in the database. When you click this button it tests if the CRL source file is updated successfully.

Step 4

Submit and commit your changes.

What to do next

You can update and delete the CRL source.

Select the CRL source and click Update to update the CRL source manually.
Select the CRL source and click the delete icon to delete the CRL source. Click Clear All CRL Sources to delete all the CRL sources.