My Oracle Support Banner

CRL Checking Fails For Unknown Reason (Doc ID 2078969.1)

Last updated on JUNE 10, 2024

Applies to:

Oracle WebLogic Server - Version 10.3.6 to 10.3.6
Information in this document applies to any platform.


During CRL checking when SSL handshake takes place, the check fails with "certificate_unknown" if "Fail On Unknown Revocation Status" is checked.

If it is not checked, the server allows the connection to proceed, despite the presence of a CRL in the cache indicating that a certificate used in the connection is revoked.

The following error is observed though:



To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.