Send a message
6 years ago
We have configured Certificate based AD authentication for our wireless clients. We have set up an Enterprise root CA on the AD. Whenever a user logs into the domain, it automatically gets the User and Computer Certificate [as autoenrollment has been configured]. The setup is working fine wherein the user and PC accquires the certs and gets authenticated and connected on the wireless network.
The problem we are facing is of Revocation. Even if we Revoke the User cert from the CA the client still gets to connect on the wireless i.e the CRLs are not getting updated to the client.
I have gone thru a lot of documentation but have failed to uderstand the nitty gritty of CRL publishing.
Kindly help me to undertsand how to go about configuring CRL publishing so that the client automatically gets the CRL info from the CA server as and when the CA publishes it.