Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Jonathan
Contributor

explanation needed for CRL check for external CAs

Hi,

I'm looking for an explanation about the CRL machanism for external CA (R80.20)

Here's our scenario - 

Users use Checkpoint Mobile VPN client to connect to the Checkpoint gateway. Authentication is performed using a client certificate that we create for each user on our internal CA, and the users install on their PC.

I am trying to figure out who, when and how exactly is the CRL of the client certificate is being checked?

All articles I found online only regard Checkpoint Internal CA.

Any help would be much appreciated.

Thank you

0 Kudos
1 Reply
G_W_Albrecht
Legend
Legend

You GW must be able to resolve the crl.name.net somehow... This is the topic of sk105246 Users are not able to connect to Mobile Access Portal with certificate issued by a third party CA. 

CCSE CCTE SMB Specialist
0 Kudos