Revocation Provider Properties
Applies To: Windows Server 2008
Online Responders in Windows ServerĀ® 2008 use the Microsoft certificate revocation list (CRL)-based revocation provider to provide certificate status. This revocation provider is the component that an Online Responder contacts to check the status of a certificate. The revocation provider is responsible for obtaining updated CRLs and determining the status of a certificate based on a CRL.
You can select one or more CRLs and delta CRLs for use with your Online Responders, and you can define how often the revocation provider receives updated CRLs.
To configure revocation provider properties for an Online Responder, enter the URLs for the CRL distribution points where the CRLs and, if wanted, delta CRLs can be accessed.
When multiple CRLs and delta CRLs are entered, you can control the order of precedence for each by moving the CRL distribution point listings up or down. Where there are discrepancies in revocation data between two CRLs, the CRL listed first takes precedence.
You can also modify the refresh rate for CRL data. The default interval is the CRL validity period.