Subordinate Certificate authority, CRL Downloading how is it done?
Posted on 2008-10-14
For the company i work for i have set up a offline root CA and a Subordinate CA
i know i need to put the offline CA back on line when the CRL is due to be downloaded my questions are,
when will the CRL be downloaded?
if it fails at first who frequently will the subordinate CA attempt to dowload the CRL?
can i force the subordinate CA to download the CRL?
if someone was daft enough to forgot to put the offline root CA on-line what would be the best aproch to get the subordinate CA to download the CRL, and will the subordinate CA fail to function if this happens?
all the CA settings (off line root and subordinate CA) setting are currently set to default, i havent played with them YET!
thanks in advance ;)