In this documentation: https://docs.microsoft.com/en-us/azure/iot-edge/production-checklist#networking, many URLs are mentioned, but nothing about CRLs for certificates used with IoT Hub, DPS or Blob Storage. Does IoT Edge verify CRLs and if using PrivateEndpoints or PrivateLink, do I need to be concerned about CRL checking?
0
votes
You will need to make sure you can connect to your root certificate authority (CA) like Baltimore, Verisign, DigiCert, or GlobalSign if you have purchased your certificate from a trusted commercial certificate authority. A CRL is issued by a CRL issuer, which is typically the CA which also issued the corresponding certificates. I will nevertheless check if Azure IoT Edge uses other trusted authority.
- asergaz
