Validate that Safeguard (or a non domain server) can access the CRL points of the certificate. (To view the points of the cert double click on the certificate -> Details -> CRL Distribution Points).
There should only be a single "http" extension in the signed certificate. An ldap or file extension should not be present when importing the certificate to Safeguard. Safeguard should be able to access the HTTP address without requiring authentication or a proxy.
Remove all the CRL Distribution points when issuing the certificate from the CA
© 2019 One Identity LLC. ALL RIGHTS RESERVED. Feedback 使用条款 隐私