AD CS online responder not working
-
jeudi 26 avril 2012 07:24
Hi,
I have a single 2008 R2 enterprise CA configured which also has the online responder service installed. This was previously working correctly but now my online responder is giving errors.
When I tried recreating the revocation configuration and received this error:
I am then able to click the Provider button (no locations are shown). I entered:
ldap:///CN=CACommonName,CN=CAHostName,CN=CDP,CN=Public Key Services,CN=Services,CN=Configuration,DC=Fabrikam,DC=com?certificateRevocationList?base?objectClass=cRLDistributionPoint
and
http://hostname/CertEnroll/hostname.crl
However I'm still having the error.
Can anyone help?
Thanks.
Toutes les réponses
-
jeudi 26 avril 2012 08:11This is because you haven't entered Delta CRL location.
My weblog: http://en-us.sysadmins.lv
PowerShell PKI Module: http://pspki.codeplex.com
Windows PKI reference: on TechNet wiki -
jeudi 26 avril 2012 09:50
Thanks for point me in the right direction. There was no CRL locations configured(!!!). I've created a http, ldap and unc locations. They are reporting OK although i had to manually publish the CRL to AD. I now have another issue... the deltaCRL Location #2 (ldap) is unable to download. Any idea why this would be?
Thanks.
.png)
