A Certificate Revocation List (CRL) is a list of subscribers and their status, which is provided and signed by Microsoft.

The list contains the following items:
  • The revoked certificates and the reasons for revocation.
  • The dates that the certificates are issued.
  • The entities that issued the certificates.
  • A proposed date for the next release.
When a potential user attempts to access a server, the server allows or denies access based on the CRL entry for that particular user.


  1. Log in to the vSphere Web Client.
  2. Click Networking & Security > NSX Edges.
  3. Double-click an NSX Edge.
  4. Navigate to Manage > Settings > Certificates.
  5. Click Add, and then click CRL.
  6. In the Certificate Contents text box, paste the list.
  7. (Optional) Enter a description.
  8. Click Add or OK.