This setting enables the checking of an X.509 certificate by certificate revocation list (CRL), which checks the validity of the remote station's certificate.
Important: You should only switch this off if you are checking by other means, e.g. with OSCP. See 2.19.36.3.1.15 OCSP-Check.
- SNMP ID:
- 2.19.36.3.1.17
- Console path:
- Setup > VPN > IKEv2 > Auth > Parameter
- Possible values:
- No
- Yes
- Default:
- Yes
