Jump to content
Free PC Help Forum
Logging In to Free PC Help Forum Has Changed

ldap distribution point

Guest ritchie1230@gmail.com

By Guest ritchie1230@gmail.com
in Microsoft Support & Discussions

 Share

Recommended Posts

Guest ritchie1230@gmail.com

Guest ritchie1230@gmail.com

Posted
Posted

We have a 3rd party VPN box that needs to retrieve CRL's from an LDAP

distribution point. I have not been able to retrieve the CRL's and

suspect the following issue. The CA was originally setup with a

relative LDAP path and a http: URL location. The VPN server does not

support http CRL retrieval. It will support LDAP with bind credentials

however.

 

We have an Windows Server 2003 offline root ca, and an online issuing

(Enterprise) CA

CRL Order:

-default

-LDAP

-http:

 

My question is this: I expect I need to change the LDAP URL to a

absolute path? and if so do I have to renew the CA's certificate

immediately after with a new key, or can I use an existing key.

 

Would it be possible to add a second LDAP url, or will that make

things more complicated?

 

Additionally, would I have to make any modifications to the AIA ldap

URL?

 

pkiview.msc is reporting all distribution points as OK

 

Appreciate any input,

 

Thank you,

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

×
 Share
Go to topic listing
×
×
  • Create New...