> On 4 Feb 2021, at 19:52, ADELIN Arnaud wrote:
>
> Thank you for your quick reply.
>
> * You ran the wget on the CRL from on the LDAP server itself and confirmed it.
> Yes
>
> * Did you wget every CRL for the entire CA chain?
> In my setup, there is only one CRL url that is set in the LDAP
Thank you for your quick reply.
* You ran the wget on the CRL from on the LDAP server itself and confirmed it.
Yes
* Did you wget every CRL for the entire CA chain?
In my setup, there is only one CRL url that is set in the LDAP server
certificate.
This CRL is available thanks to wget.
For the
>
> Could you help me understanding how to configure 389-ds to enable CRL
> checking at TLS authentication ?
>
> I am working on the master/master replication between two instances.
> The TLS communication thanks to certificate works without problem but the CRL
> url is ignored.
>
> By