11-28-2011 08:10 AM
I am getting ready to upgrade my controller environment and we have decided to install security certificates on our local controllers instead of dong the OCSP workaround. I was instructed by Aruba to install a Trusted CA certificate which doesn’t have the CRL.
My question is has anyone done this and what exact type of certificated do I need. I want to get this right the first time and would appreciate any help
Solved! Go to Solution.
11-28-2011 09:47 AM
The key is to find a CA that does include the AIA attribute in the signed server certificate you are purchasing. Typically some of the cheaper SSL certificates exclude this option and try to up sell you to a more secure option that includes the AIA attribute set with OCSP details.
See the post from Jon Green in the following thread for more info.