Revocation check for WSFed connections

Introduction

This document is about how to disable or enable certificate revocation checks for WS-Federation plugins using Identify*Admin.

WS-Federation protocol connection

Revocation check is performed against encryption certificates.

  • To disable it, you can open the WS-Federation protocol connection page and set the “Encryption certificate revocation check:” value to None
  • Otherwise, select any of the other settings will enable encryption certificate revocation check.

WS-Federation authentication connection plugin

Revocation check is performed against signing certificates.

  • To disable it, you can open the WS-Federation authentication connection page and set the “Signing certificate revocation check:” value to None
  • Otherwise, select any of the other settings will enable signing certificate revocation check.