Cisco 3.3 User Manual

10-43

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

Chapter 10 System Configuration: Authentication and Certificates

Cisco Secure ACS Certificate Setup

Tip

Only CRL Issuers that are listed on the CTL are listed as possible
selections. That is, you must list an entity as trusted on the CTL before
you can select their Issuer’s Certificate.

Step 8

In the CRL Distribution URL box, type the URL for CRL distribution repository.

Tip

The URL must specify the CRL itself when the repository contains
multiple files.

Step 9

In the Retrieve CRL every box, type the quantity and period of time that
Cisco Secure ACS should wait between retrieving a CRL.

Step 10

Select the Retrieve on “Submit” option to have Cisco Secure ACS attempt to
obtain the current CRL when the page is submitted for processing.

Tip

Selecting the Retrieve on “Submit” option is recommended. If
Cisco Secure ACS cannot obtain the CRL from the distribution repository
you listed, it displays the following error message:

Failed to retrieve

CRL. Verify the CRL Distribution URL.

Step 11

Click Submit.

The specified CRL is added to Cisco Secure ACS (or is scheduled to be added if
the Retrieve on “Submit” option was not selected).

Tip

You can refer to the Last Retrieve date: box to see the status, date, and
time of the last retrieval attempt.