2.2.3.26 CheckCRL
The CheckCRL element is an optional child element of the ValidateCert element in ValidateCert command requests that specifies whether the server ignores an unverifiable revocation status.
All elements referenced in this section are defined in the ValidateCert namespace.
|
Command request/response |
Parent elements |
Child elements |
Data type |
Number allowed |
|---|---|---|---|---|
|
ValidateCert command request (section 2.2.1.22) |
ValidateCert (section 2.2.3.195) |
None |
integer ([MS-ASDTYPE] section 2.6) |
0...1 (optional) |
The revocation status of a certificate cannot be verified when the certificate revocation lists (CRLs) cannot be retrieved.
When the CheckCRL element value is set to 1 (TRUE), the server MUST NOT ignore an unverifiable revocation status. When the CheckCRL element value is set to 0 (FALSE), the server SHOULD ignore an unverifiable revocation status. The default value is 0 (zero).
Protocol Versions
The following table specifies the protocol versions that support this element. The client indicates the protocol version being used by setting either the MS-ASProtocolVersion header, as specified in [MS-ASHTTP] section 2.2.1.1.2.6, or the Protocol version field, as specified in [MS-ASHTTP] section 2.2.1.1.1.1, in the request.
|
Protocol version |
Element support |
|---|---|
|
2.5 |
Yes |
|
12.0 |
Yes |
|
12.1 |
Yes |
|
14.0 |
Yes |
|
14.1 |
Yes |
|
16.0 |
Yes |
|
16.1 |
Yes |