Array Networks / Knowledgebase / When Web or FTP (that is set by "ssl setting crl" for CRLDP) is down, will client authentication of Array SPX still work by CRLDP that the Array SPX has downloaded?

Browse by category:

When Web or FTP (that is set by "ssl setting crl" for CRLDP) is down, will client authentication of Array SPX still work by CRLDP that the Array SPX has downloaded?

Email to friend

Add comment

Votes: 0

Comments: 0

Client authentication will continue to work with the most recently downloaded CRL file. The SPX will only replace a working CRL file with a new CRL file if the new CRL file is valid. The bottom line is that the SPX needs at least one valid CRL file. The only way that the CRL file would prevent client authentication from working is if a valid file was never downloaded. When you execute the "ssl settings crl" command, the SPX will download the initial CRL file, so you will be able to tell at that point if there was an initial problem.

Other questions in this category

	Do we support the Extended Validation SSL certificate or cipher suites?
	PKI server (CA or RA) is used for authentication. Can Array SP bypass login and talk to the PKI server for the authentication?
	How does SSL port forwarding feature work?
	What does the "Resumed SSL Session" mean?
	What value in ArrayOS is equivalent to "SSLSessionCacheTimeout" from Apache mod_ssl?
	What "Compression Method" does ArrayOS SSL handshake accept?
	What vendor should be used to acquire a certificate from Verisign or any CA?
	What version of SSL does ArrayOS support?
	Does the ArrayOS support end to end SSL using fwd tcps?

Array Networks, Inc.