3.10.19. EAPTLS_CRLCheckAll Previous topic Parent topic Child topic Next topic

For TLS-based EAP types, this optional parameter enables CRL checks for the entire certificate chain. EAPTLS_CRLCheckAll is not enabled by default. The CRL files for the intermediate CAs must be found, otherwise the certificate check fails. See Section 3.10.20. EAPTLS_CRLFile for the details.
EAPTLS_CRLCheck must be enabled for any certificate checks to happen.