I created a Root CA for my domain and I can issue certificates, or have people request them via exampl.com/certsrv but OCSP is not working
certutil -url certificate.cer shows the certificate has the right URL for the CRL but the CRL doesn't seem to be updated with revocations. Browsing to the crl file on the CA server itself shows no revocations listed either. Can someone help me debug this?
PS: OCSP url should be cabox.example.com/CertEnroll/cabox.crl