Securing Email with Cisco Email Security Appliance (SESA) — Question 122

What is the purpose of checking the CRL during SMTP authentication on a Cisco ESA?

Answer options

• A. Check if the certificate is not revoked.
• B. Confirm that corresponding CA is present.
• C. Verify the common name matches user ID.
• D. Validate the date to check if the certificate is still valid.

Correct answer: A

Explanation

The correct answer is A because the Certificate Revocation List (CRL) is specifically used to check whether a certificate has been revoked, ensuring it can still be trusted. Options B, C, and D address different aspects of certificate validation but do not pertain to the CRL's primary function.