User profile for user: chase_daniel
chase_daniel Author
User level: Level 1
91 points

OCSP and CRL settings for High Sierra

It seems like this article no longer applies for High Sierra and needs to be updated: Keychain for Mac: Change validation settings for certificates using Keychain Access. I don't see the options to require CRL and OCSP checks in Keychain like there were prior to High Sierra and would like to know if that's still configurable elsewhere.


Also I'm having trouble adding CRL files to a Keychain. I know I've done it before in the Terminal, I think with openssl but would like to use whatever method Apple recommends now and haven't had any luck with security or spctl and I'm not sure crlrefresh is doing anything.

Posted on Jan 28, 2018 10:53 PM

Reply

Similar questions

There are no replies.

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

OCSP and CRL settings for High Sierra

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up