My Oracle Support Banner

Introducing Support for Certificate Revocation Lists at the SGD Gateway (Doc ID 2530336.1)

Last updated on NOVEMBER 17, 2023

Applies to:

Oracle Secure Global Desktop - Version 5.4 and later
Information in this document applies to any platform.

Purpose

The Secure Global Desktop (SGD) Gateway can now support the use of Certificate Revocation Lists (CRLs) for Client Certificates.

With this optional feature enabled, the SGD Gateway will also verify presented client certificates against a configured CRL.  If a presented certificate has been flagged as revoked, the SGD Gateway will drop the connection to the corresponding client. 

This document describes the prerequisites for this functionality, and steps necessary to configure within a SGD Gateway deployment.

Scope

This guidance is intended for SGD Administrators that would like to enable, or enhance existing support of Client Certificates for authentication or access control at the SGD Gateway. 

Details

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Purpose
Scope
Details
 Overview
 Introducing CRL Support
 File: revocation.xml
 Configuring CRL Endpoints
 Additional Details regarding CRL Support
 Prerequisites
 Configuration
 Procedure
References

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.