You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Right now when a 3rd party CA is added to the Ziti Controller there is no way to stop any one certificate, that is correctly signed/dated/etc, that has been "revoked" (either actual revocation or should be blocked for some external reason.
Options for implementation:
Add an internally managed Ziti revocation list
Easy but if there is a managed CRL/OCSP it becomes redundant
Add CRL/OCSP lookups for enrollment, periodical checks for new revocations, and ability to force revocation checks
The text was updated successfully, but these errors were encountered:
Right now when a 3rd party CA is added to the Ziti Controller there is no way to stop any one certificate, that is correctly signed/dated/etc, that has been "revoked" (either actual revocation or should be blocked for some external reason.
Options for implementation:
The text was updated successfully, but these errors were encountered: