Certificate Validation Options

This screen area is only ready for input if you have selected a certificate.

Validation Options
Field	Description
Revocation Check	In this field you define how the revocation check of the server certificate is to be performed. You have the following options: No Check on Revoked Certificates No check is carried out. Check Online Revocation Lists The online check is a secure procedure but it can have a negative impact on performance. Recommendation This is the recommended setting in connection with the Microsoft certificate store. Check Offline Revocation Lists If you are using the Microsoft certificate store, you need to copy all the relevant certificate revocation lists into the Trusted Root Certification Authorities directory. If you have selected the file system certificate store, you need to copy all related certificate revocation lists as .crl files into the revocation list folder.
Revocation Check Scope	Indicates the scope of the revocation check. You have the following options: Check End Certificate Only Only the last certificate in a certificate chain is checked. Exclude Root Certificate from Check Check Entire Chain All certificates in a certificate chain are checked. Recommendation This is the recommended setting.
Ignore Server Host Name	If you select this checkbox, the check results of the server host name are not taken into consideration. During the check, a comparison is made with the domain name system (DNS) name that is included in the certificate. The DNS name is the name of a server in a domain, for example: `server.domain.com`. Recommendation SAP recommends that you do not set this indicator.
Ignore Validity Period	If you select this checkbox, you define that the validity period of the client certificate and the certificates in the certificate chain are not to be taken into consideration.