How to revoke Online CA from Offline CA on separate KCA installations.
Originally Published: 2001-09-03
Article Number
Applies To
Offline CA and Online CA are hosted on separate KCA installations.
Issue
Cause
Resolution
Note: this is true only where the Online and Offline CA's are held on separate KCA installations. The Offline CA is quite capable of revoking an Online CA and issuing a correct Certificate Revocation List when both CAs are on the same KCA installation.
Related Articles
How to create and configure certificates for HTTPS access when using intermediate CA certs in RSA Identity Governance & Li… Number of Views Error "keytool error: java.lang.Exception: Failed to establish chain from reply" when importing the SSP CA signed certific… Number of Views How to 'Trust' the RSA Authentication Manager Security Console Self-Signed Root CA certificate and prevent Cert warnings. Number of Views Online, Reinstall Required message on Web Tier after reinstalling with the new RSA Authentication Manager 8.x Web-Tier pac… Number of Views RSA Identity Governance and Lifecycle Provisioning -Termination rule is not generating change requests to revoke entitlements Number of Views
Trending Articles
Downloading RSA Authentication Manager license files or RSA Software token seed records RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide RSA Authentication Manager 8.9 Release Notes (January 2026) RSA-2026-07: RSA Identity Router Security Update for Third-Party Component Vulnerabilities Quick Setup Guide - Passwordless Authentication in Windows MFA Agent for Active Directory
Don't see what you're looking for?
