Most Recent Certificate Revocation List (CRL) may not be Installed when Multiple CRL exists
(Doc ID 1314442.1)
Last updated on FEBRUARY 03, 2019
Applies to:Oracle iPlanet Web Server - Version: 7.0
Information in this document applies to any platform.
The symptom seen here is that the set of revoked certificates or keys may not be up to date. This is not normally apparent unless a revoked certificate is used to test the web server which is normally not possible.
When multiple CRL files by the same CA exist, some of them may be old copies, is possible that the newer CRL is not loaded or superceded by the older CRL copies.
The impact of this is that the most recent and up to date revoked certificates and keys may not be used.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document