Unable to generate a CRL or revoke a certificate
Originally Published: 2007-02-15
Article Number
Applies To
Microsoft Windows 2000
Two-phase logging activated to log success and failure of all operations
Issue
When generating a CRL the following message appears on-screen and in the audit log:
[XrcSECURELOGSERVERNOTREACHABLE: secure logging server is not reachable or out of diskspace]
Cause
The file /Xudad/ssl/certs/cas.cert & /LogServer/ssl/certs/cas.cert contains the old System which has expired.
Resolution
If cas.cert contains an expired System CA certificate, log in to the Admin Console, under CA Operation select the System CA --> View PEM, and replace the content of cas.cert with the active System CA.
Related Articles
How to revoke certificates using the API? Number of Views RSA Governance & Lifecycle Recipes: Chart - Review Results - Application Progress Number of Views RSA Governance & Lifecycle Recipes: Chart - Review Results - Review Progress Trending Number of Views RSA Identity Governance and Lifecycle Provisioning -Termination rule is not generating change requests to revoke entitlements Number of Views Reassign user access review items in bulk by Application/Directory in RSA Identity Governance & Lifecycle Number of Views
Trending Articles
RSA Authentication Manager 8.9 Release Notes (January 2026) RSA Release Notes for RSA Authentication Manager 8.8 Generate a Certificate Signing Request (CSR) for the Web Tier RSA SecurID Software Token 4.1.2 and 4.2.1 for Mac OS X displays: No token storage device was detected. Verify that the de… RSA Authentication Manager 8.8 Security Configuration Guide
Don't see what you're looking for?
