11-28-2013 10:27 AM
11-29-2013 03:16 AM
Just in case anyone gets caught out on this who have done a recent installtion of PKI:
By allowing "Enable NONCE extensions support" you allow an OCSP check to get processed properly.
Note now my linux systems can do a OCSP check successfully - I guess at CPPMs heart lies a linux server, as most of the stuff is nowadays.
I have more detail I can post up if anyone wants me to, regarding the certutil OCSP validatoin check the MicrosoftCryptoAPI and the openssl method fi you want.
Hope it saves you guys some time if you end up in the same boat.
12-01-2013 09:20 PM
Thanks for the info soapdish. Can yoyu post what you found on the AAA tread? Im sure some of the other guys could benifit from your information.
--Give Kudos: found something helpful, important, or cool? Click Kudos Star in a post.
--Problem Solved? Click "Accepted Solution" in a post.