Pulling Remote Certificate Revocation List
-
We're deploying Pfsense VPN on AWS and using AWS Private Certificate Authority (PCA) as the Open VPN Certificate Authority. We have PCA configured to write the Certificate Revocation List (CRL) to a given private S3 bucket. Is it possible to configure Pfsense to pull the CRL periodically instead of manually loading via the console? If it is not natively supported, happy to write a cron and land it somewhere on the filesystem if it can be automated from the local machine. Thanks in advance for the advice.
-
Is there any information available on remote pulling CRLs? This could be a deal breaker for out continued purchase of pfsense licenses.
Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.