07-14-2015 05:29 AM
I am trying to set-up a Certificate Revocation List (CRL) on Clearpass (6.5.1) but the appliances are configured to use a HTTP proxy.
When I add the CRL URL, I get an "Proxy Authentication Required" error message.
The HTTP proxy is set-up correctly with authentication and this is working as the appliance can download software updates. If I turn off the proxy then the CRL URL is accepted.
Does anybody know whether the CRL check utilises the HTTP proxy credentials?
ACDX #98 | ACMP | ACCP
Solved! Go to Solution.
07-15-2015 07:11 AM
You might see this error 'Proxy Authentication Required', when the HTTP Connect prior to GET is not allowed via proxy.
ClearPass 6.5.2 has an option to bypass proxy for CRL. Try bypassing the proxy for CRL under Administration->Certificates->Revocation Lists.
**Did something you read in the Community solve a problem for you? If so, click "Accept as Solution" in the post.