none
Error 0x80092013 when connecting to DA RRS feed

  • General discussion

  • When Connecting to DA I am getting error

    0x80092013

    Certficate we are using is from Internal PKI.

    PLease help to isolate issue.

    Thanks

    Mandar.

    Thursday, April 18, 2013 11:03 AM

All replies

  • Hello Mandar

    I assume you see this error on the DA-client? The error code means 0x80092013, CRYPT_E_REVOCATION_OFFLINE, The revocation function was unable to check revocation because the revocation server was offline

    Please check that the CDP (certificate revocation list distribution point) of all of yourCAs (certificate authorities) are reachable by the DA-client, e.g. they should be listed as Name Resolution Policy Table Exceptions. If you are using a multiple-tier PKI, is is important that also the CDP of the root CA is available.

    /Maurice

    Friday, April 19, 2013 9:39 AM
  • Quick addendum - this blog post http://blogs.technet.com/b/edgeaccessblog/archive/2010/05/20/uag-directaccess-test-lab-guide-crl-check-update.aspx mentiones the error code you are seeing. The recommendation is to remove the LDAP CDP setting in the PKi CA Extensions. Please consider carefully if this is a good thing to do in your production environment (the blog post deals with a test lab guide!).

    /Maurice

    Friday, April 19, 2013 10:26 AM