You can edit your ISA's system policy to allow ISA Server fetch your CRL's ;) Tiago -----Mensagem original----- De: Chris H [mailto:ntpro@xxxxxxxxxx] Enviada em: sexta-feira, 12 de novembro de 2004 16:44 Para: [ISAserver.org Discussion List] Assunto: [isalist] Certificate Revocation http://www.ISAserver.org if I have an l2tp ipsec vpn to an ISA server 2004 using a user and non-exportable admin certificate for the machine, how does the "revoke" process work so I can make sure that machine can no longer be used to connect to the VPN? I revoked the cert on the certificate server, but so far (its been an hour) the machine can still VPN in. Do I have to open something up on the ISA server to allow the cert server out to the internet? Cheers! Chris ------------------------------------------------------ List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ ------------------------------------------------------ Other Internet Software Marketing Sites: World of Windows Networking: http://www.windowsnetworking.com Leading Network Software Directory: http://www.serverfiles.com No.1 Exchange Server Resource Site: http://www.msexchange.org Windows Security Resource Site: http://www.windowsecurity.com/ Network Security Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com ------------------------------------------------------ You are currently subscribed to this ISAserver.org Discussion List as: tiago@xxxxxxxxxxxxxxx To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist Report abuse to listadmin@xxxxxxxxxxxxx