Hazel Wrote
>1. First, use "openssl ca" to generate a CRL.
command i used to revoke
openssl ca -verbose $SSLEAY_CONFIG -revoke ./CA/certs/test.crt
openssl ca -verbose -gencrl $SSLEAY_CONFIG -batch -out \
./CA/crl/test.crl -infiles ./CA/newcerts/test.csr
>2.
1. First, use "openssl ca" to generate a CRL.
2. Make sure that your web server supports CRL check. If it does, add
the CRL file path to the web conf file.
Hazel
Michael Harvey wrote:
> I Neeed Help with setting up CRL's
> I run a small www site for a special group
> I set up a Self signed CA
