When using the crl-file option with multiple Certificate Authority
levels in the CA chain, there must be one CRL per CA or the verify
function on the backend side will raise an "unagle to get certificate
CRL" error (error code 3).
This was required by GitHub issue #1201.
crl-file <crlfile>
This setting is only available when support for OpenSSL was built in. It
designates a PEM file from which to load certificate revocation list used
- to verify client's certificate.
+ to verify client's certificate. You need to provide a certificate revocation
+ list for every certificate of your certificate authority chain.
crt <cert>
This setting is only available when support for OpenSSL was built in. It