Use this procedure to enable or disable the certificate revocation check for multifactor authentication. When configured in secure mode, AE Services provides an ability to enable certificate revocation check for client certificates.
Before you begin
Ensure the following:
The OCSP responder is available from which the certificate revocation status can be obtained.
The OCSP responder URL is provided in the certificate AIA extension or during the certificate revocation check for MFA configuration.
The OCSP responder is running on Port 80, when secure mode is configured on AE Services.
Procedure
To enable the certificate revocation check, run the following command on the command line interface:
mfaOCSPCheck enable
To disable the certificate revocation check, run the following command on the command line interface:
mfaOCSPCheck disable
To check the status of a certificate revocation check, run the following command on the command line interface:
