Hello,
The Active Directory Certificate Services feature is working great for us--just one problem. When user obtains a certificate from Web Enrollment, the CRL is LDAP-based:
[1]CRL Distribution Point
Distribution Point Name:
Full Name:
URL=ldap:///CN= ...
The machines running IIS that will be examining these certificates for authentication purposes will not have access to LDAP, hence our question: Is there any way to get Web Enrollment to issue certificates with online- (HTTP-) based revocation lists instead of LDAP-based ones?
Thanks,
BGU