Select Enable CRL to add URLs to a Certificate Revocation List.
Type in the URLs of Certificate Revocation List issuers to be used for certificate verification.
These are the URLs that your client uses when checking the server's certificate.
Each URL should be on a single line.
LDAP, file, and HTTP URLs are supported.
Examples:
ldap://myCAServer.example.com/CA/certificaterevocationlist
file://localhost/c:/crls/TrustAnchorCRL.crl
http://server1.example.com/CertEnroll/server1.example.com.crl
If required, select Verify that certificate and CRL are signed by the same CA private key. Certificate Authorities (CAs) may use one private key to sign certificates and CRLs digitally. However, CAs can also use separate private keys to sign certificates and CRLs digitally.