Useful steps for situations where a CRL check is not possible or needed or desired. These instructions will tell the sensor to ignore any communication issues that are not cert failures based on revocation. In those situations, it will proceed anyway.
Options:
CURL_CRL_REVOKE_BEST_EFFORT=1
CurlCrlRevokeBestEffort=1
"C:\Program Files\Confer\RepCLI.exe" updateconfig
The command line addition will add the following line to the cfg.ini file
CurlCrlRevokeBestEffort=1
This will allow the Sensor to remain enabled and set to best effort but sensor communication continues if the CRL distribution point is unreachable.
WARNING:
Additional information can be found about What are some concerns with disabling the CRL check within the Sensor?