question

SukhwinderSingh-7853 avatar image
0 Votes"
SukhwinderSingh-7853 asked FanFan-MSFT answered

HTTPS URL in CRL Distribution point

Hi All,

I am looking to use HTTPs in CDP location for Microsoft CA server but when i try to configure it I get the following message.

I already have certificate installed in IIS. I tried with both certificate generated from same CA server and other CA server but no use

Is there a possibility to use https in CDP location.

Error

microsoft active directory certificate services.

the specified location is not valid. a valid location can be a http, ldap, ftp, file address, unc path or a local file path

windows-serverwindows-active-directorywindows-server-security
5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

FanFan-MSFT avatar image
0 Votes"
FanFan-MSFT answered

Hi,
HTTPS protocol for CRT/CRL will not work because CryptoAPI will permanently fail to fetch this URL.
https://docs.microsoft.com/en-us/answers/questions/169840/how-can-i-configure-cdp-with-https.html
https://www.sysadmins.lv/blog-en/designing-crl-distribution-points-and-authority-information-access-locations.aspx

This response contains a third-party link. We provide this link for easy reference. Microsoft cannot guarantee the validity of any information and content in this link.
Best Regards,

5 |1600 characters needed characters left characters exceeded
Toggle Comment visibility. Current Visibility: Visible to all users

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.