This feature enables you to verify the certificate revocation.
If you have selected to use server and client authentication in your SSL settings, you might want to configure your server to check for revoked or expired certificates.
When a client sends an authenticated request to a server, the server reads the certificate and sends a query to an LDAP server with a list that contains revoked certificates. If the client certificate is not found in the list, communications between the client and server are allowed over SSL. If the certificate is found, communications are not allowed.
To configure SSL certificate revocation verification use one of the following methods: