CRL Checking Fails For Unknown Reason (Doc ID 2078969.1)

Last updated on JULY 03, 2017

Applies to:

Oracle WebLogic Server - Version 10.3.6 and later
Information in this document applies to any platform.

Symptoms

During CRL checking when SSL handshake takes place, the check fails with "certificate_unknown" if "Fail On Unknown Revocation Status" is checked.

If it is not checked, the server allows the connection to proceed, despite the presence of a CRL in the cache indicating that a certificate used in the connection is revoked.

The following error is observed though:

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms