Thank you for your quick reply. * You ran the wget on the CRL from on the LDAP server itself and confirmed it. Yes * Did you wget every CRL for the entire CA chain? In my setup, there is only one CRL url that is set in the LDAP server certificate. This CRL is available thanks to wget. For the moment, I will try to disable the CRL. I hope this work around will be accepted by my manager. Thanks. _______________________________________________ 389-users mailing list -- 389-users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to 389-users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/389-users@xxxxxxxxxxxxxxxxxxxxxxx
