• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 573
  • Last Modified:

How to resolved this error "a revocation check could not be performed for the certificate"

While I am trying to open application on remote computer, am getting this error but on another pc it is working with same credentials and same windows 7 OS "a revocation check could not be performed for the certificate"

Please help me resolve it.
0
Sanjeev jha
Asked:
Sanjeev jha
  • 2
1 Solution
 
CraigFrostCommented:
Every certificate is issued with a specific validity period. Revoking a certificate invalidates it as a trusted security credential before its original validity period expires. There are a number of reasons why a certificate can become untrustworthy as a security credential before its scheduled expiration. Examples include:
• Compromise, or suspected compromise, of the certificate subject's private key.
• Compromise, or suspected compromise, of a certification authority's (CA) private key.
• Discovery that a certificate was obtained fraudulently.
• Change in the status of the certificate subject as a trusted entity.
• Change in the name of the certificate subject.

It is not always possible to contact a CA or other trusted server for information about the validity of a certificate. To effectively support certificate status checking, a client must be able to access revocation data to determine whether the certificate is valid or has been revoked.

******************

You can check the revocation location by opening the certificate and selecting the details tab and scrolling down to  CRL Distribution points. There should be a URL, network path that the client PC needs to have access to. Copy and open the URL or network path. If you don't see the file or can't download it then you don't have access to the CRL.

In the attached screen shot I have gone to https://www.att.com within IE, selected the padlock, then selected view certificates, selected the details tab, and scrolled to CRL Distribution Points. I copied the URL in the distribution point in another IE window and can download the file.

So my PC has access to the CRL and can verify that the certificate is valid.
Untitled.png
0
 
SandyCommented:
Check the system date  and time,, it must be very old because of that it is asking for revocation verification.

TY/SA
0
 
Sanjeev jhaAuthor Commented:
Hi Thanks: Most system with windows 7 os, it is working. Only in my laptop it is showing this error, when am trying to open any application.
revocation.png
0
 
SandyCommented:
This appears to happen if it cannot resolve the farm in DNS.  I have resolved the issue by adding my system to the clients hosts file and now they are able to get connected..

Try once...

TY/SA
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now