F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Luke_Lehman's avatar
Luke_Lehman
Icon for Employee rankEmployee
Aug 24, 2010

CRL - File Format - Updating

Hey All,     We're looking to implement client certificate authentication and use a CRL.     1 - Updating the CRL file on a regular basis - best to do with a cron job?     2 - The CR...
config
design
Luke_Lehman's avatar
Luke_Lehman
Icon for Employee rankEmployee
Aug 25, 2010
Solved.

 

 

.crl format is actually DER format. The openssl syntax that I had wasn't correct.

 

 

bad syntax: openssl crl -in .crl -outform PEM -out .pem

 

good syntax: openssl crl -inform der -in .crl -out .pem

 

 

Still looking for suggestions as to if a cron job is the best / safest way to obtain the CRL.

 

 

Thanks.