Most Recent Certificate Revocation List (CRL) may not be Installed when Multiple CRL exists
Last updated on NOVEMBER 05, 2016
Applies to:Oracle iPlanet Web Server - Version: 7.0
Information in this document applies to any platform.
The symptom seen here is that the set of revoked certificates or keys may not be up to date. This is not normally apparent unless a revoked certificate is used to test the web server which is normally not possible.
When multiple CRL files by the same CA exist, some of them may be old copies, is possible that the newer CRL is not loaded or superceded by the older CRL copies.
The impact of this is that the most recent and up to date revoked certificates and keys may not be used.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms