Snare Agents TLS setting to disable TLS CRL verification
most common TLS clients (web browsers) don't check CRLs (cert revocation lists) or do soft failure. It would be nice to do the same in SNARE, so that CRL fetch outage doesnt cause logging outage
Thank you for sharing this suggestion, we will review and reach out to you for further clarification if needed. This enhancement is under review with the Snare Development Team.
Hannah Fidelson commented
Some time ago we requested a feature to have an option to disable CRL verification. I would like to check back on the progress.
CRL-based SSL certificate verification could be turned off on SNARE Client. (like it is in many popular browsers)