Refreshing the CRL

  1. In the Certificate Manager dialog box, select File > Refresh CRL. The Refresh CRL dialog box is displayed.
  2. In the CRL Valid Days or Expiration Date field, specify the number of days for the CRL to remain valid, or the date for it to expire. This is in mm/dd/yyyy format. For example, 1 means the CRL expires tomorrow .
  3. Select the CRL refresh option.
  4. Click Update existing CRL to change the expiration date for the existing CRL.
  5. Click Create a new CRL to use the current contents of the Revoked Certificates folder to build a new CRL that contains only those entries.

    Be careful when selecting the option to create a new CRL. The \server\certs\revoked folder must contain the certificates of all users who should not be authorized to access the system. If a certificate is not in this folder, then the new CRL does not have an entry for that user.

  6. Click OK.