A Certificate Revocation List (CRL) is used to revoke certificates that have been issued by a CA that Avaya SBC trusts. CRL is the only way to revoke an invalid certificate. CRLs list information embedded in certificates, and CA certificates are ignored.

Native CRL file format (Distinguished Encoding Rule - DER) is not supported, and must be converted to PEM format. To convert to PEM format, run the following command: openssl crl -in SystemManagerCA.crl -inform DER -out SMGRCRL.pem