Disabling (or enabling) CDP monitoring and revocation checking

By default, Trust Protection Platform's revocation monitoring feature is enabled. But you can disable and re-enable the feature. You can disable revocation checking, though this is not a recommended practice.

Certificates that are Expired, Disabled, Revoked, or marked Certificate Hold are no longer checked for revocation.

You can only turn off Revocation checking and CDP monitoring for the whole platform by disabling the Certificate Revocation Service Module for all engines in each engine's Venafi Configuration Console. This turns off BOTH Revocation checking and CDP monitoring. You can't disable or enable one without the other.

To disable (or enable) Revocation monitoring and CDP monitoring

1. On each engine, open the Venafi Configuration Console.
2. Click the Product node.
3. Locate the Certificate Revocation Monitoring component.
4. In the Actions panel, click Disable (or Enable).
5. [Conditional] If you are disabling the component, you need to repeat for every engine. If you are enabling the component, you should only enable it on engines that have access to the CDP and OCSP endpoints.