Extending the validity period for CRL and OCSP responses for a local computer

Administrators is the minimum group membership required to complete this procedure.

To extend the validity period for CRL and OCSP responses for a local computer

1. Click Start, type gpedit.msc in the Search programs and files box, and then press ENTER.
2. In the console tree under Local Computer Policy\Computer Configuration\Windows Settings\Security Settings, click Public Key Policies.
3. Double-click Certificate Path Validation Settings, and then click the Revocation tab.
4. Select the Define these policy settings check box, and then select the Allow CRL and OCSP responses to be valid longer than their lifetime check box.
5. In the Default time the validity period can be extended box, enter a value of time (in hours), and then click OK to apply the new settings.