Sanjeev jha
asked on
How to resolved this error "a revocation check could not be performed for the certificate"
While I am trying to open application on remote computer, am getting this error but on another pc it is working with same credentials and same windows 7 OS "a revocation check could not be performed for the certificate"
Please help me resolve it.
Please help me resolve it.
Check the system date and time,, it must be very old because of that it is asking for revocation verification.
TY/SA
TY/SA
ASKER
Hi Thanks: Most system with windows 7 os, it is working. Only in my laptop it is showing this error, when am trying to open any application.
revocation.png
revocation.png
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
• Compromise, or suspected compromise, of the certificate subject's private key.
• Compromise, or suspected compromise, of a certification authority's (CA) private key.
• Discovery that a certificate was obtained fraudulently.
• Change in the status of the certificate subject as a trusted entity.
• Change in the name of the certificate subject.
It is not always possible to contact a CA or other trusted server for information about the validity of a certificate. To effectively support certificate status checking, a client must be able to access revocation data to determine whether the certificate is valid or has been revoked.
******************
You can check the revocation location by opening the certificate and selecting the details tab and scrolling down to CRL Distribution points. There should be a URL, network path that the client PC needs to have access to. Copy and open the URL or network path. If you don't see the file or can't download it then you don't have access to the CRL.
In the attached screen shot I have gone to https://www.att.com within IE, selected the padlock, then selected view certificates, selected the details tab, and scrolled to CRL Distribution Points. I copied the URL in the distribution point in another IE window and can download the file.
So my PC has access to the CRL and can verify that the certificate is valid.