The revocation status of a certificate cannot be retrieved

Error

The revocation status of a certificate cannot be retrieved.

Explanation

This problem mostly occurs with private root certificates whose certificate chains cannot be retrieved from public key servers because they are not trustworthy.

Solution

• Make sure that the complete certificate chain of the sender is stored in NoSpamProxy.

NOTE: Providers such as Datev or Allianz publish their intermediate and root certificates on their own websites. Alternatively, the sender must send you the respective certificate chain.

• Use the Powershell command Check-NspCertificates from our Github to check the sender's end certificate on the Gateway Role systems.

TIP: Before executing the above command, execute the command Connect-Nsp -IgnoreServerCertificateErrors.