OK I found my problem verifying my crl. Pb was that certificate where
signed by CA root instead of CA.
thank for CAfile option that verify CRL
michael Dorrian <[EMAIL PROTECTED]>
Envoyé par : [EMAIL PROTECTED]
23/03/2006 02:38
Veuillez répondre à openssl-users
Pour : openssl-us
Hello
I built a web server with apache 2.xx. Access is secure with
SSLVerifyClient directive
When I revoke a certificate and then generate my CRL, I can verify that
the certificate has been well revocated and is part of the CRL with the
following commands :
openssl ca -config openssl.cnf -revok
