crlIssuers

This parameter specifies the URLs of the CRLs (Certificate Revocation Lists) that are used by certificate path processing for checking the certificate revocation status of a certificate chain. The default is empty. This applies to SSL/TLS sessions only. LDAP, file, and HTTP URLs are supported.

Value

Any series of URLs separated by semicolons; may be empty (Default).

Example

  • <param name="crlIssuers" value="ldap://myCAServer.example.com/CA/certificaterevocationlist; ldap://rootCA.verisign.com/CRL">
  • <param name="crlIssuers" value="file://localhost/c:/crls/TrustAnchorCRL.crl">
  • <param name="crlIssuers" value="http://server1.example.com/CertEnroll/server1.example.com.crl">

Top of index