E
E.M.George
The problem I am running into is this:
We have set the user to require a smart card for logon. We
issue a smart card. and later we revoke the certificate.
The user can still logon with the revoked certificate on
the smartcard.
Development Environment:
Windows 2000 Domain, latest service packs and updates
2 x DC's
1 Enterprise CA
1 Ensterprise Sub-CA
5 workstations XP\2000Pro
CRL publishing is set for 1 hour.
What happens is that the user, even after the new CRL is
published, can still logon using the smartacrd with a
revoked certificate.
We have even downloaded and manually installed the CRL on
each server\workstation.
Any help is greatly appreciated.
We have set the user to require a smart card for logon. We
issue a smart card. and later we revoke the certificate.
The user can still logon with the revoked certificate on
the smartcard.
Development Environment:
Windows 2000 Domain, latest service packs and updates
2 x DC's
1 Enterprise CA
1 Ensterprise Sub-CA
5 workstations XP\2000Pro
CRL publishing is set for 1 hour.
What happens is that the user, even after the new CRL is
published, can still logon using the smartacrd with a
revoked certificate.
We have even downloaded and manually installed the CRL on
each server\workstation.
Any help is greatly appreciated.