3.10.21. EAPTLS_CRLCheckAll Previous topic Parent topic Child topic Next topic

For TLS-based EAP types, this optional flag parameter enables CRL checks for the entire certificate chain. EAPTLS_CRLCheckAll is not enabled by default. The CRL files for the intermediate CAs must be found, otherwise the certificate check fails. See Section 3.10.22. EAPTLS_CRLFile for the details.
Note
EAPTLS_CRLCheck must be enabled for any certificate checks to happen.