- NG Firewall firmware versions 4.2.x, 5.0.x, 5.2.x
- netfence firmware versions 4.2.x
While retrieving a CRL of a root certificate in the VPN server, the following message in the "Log" > "<Servername>" > "<Servicename>" > "vpnserver.log" occurs and the CRL updates does not work.
Error +0200 CRL Destination path on LDAP-Server ldap.server.com for yourcertname not found (Size limit exceeded)
What does it mean?
Some LDAP server uses a "maxHits" limit to protect the server for long search requests. If this limit is reached, the error "size limit exceeded" occurs. The reason could be the global search string " ?cn=* "at the CRL path, which is configured for the certificate.
Enter your certificate name for the global search parameter to limit the search request.