Digital Signatures Defaults on Linux/WebSphere/Oracle DB




I have some things I'm trying to clarify on an install I currently have, and a new install I'm about to do.

My current install (ES 8.1), the server doesn't have internet access, so when I certify a PDF using a VeriSign cert, it takes a little longer per file to certify when compared to a self-signed cert. I believe it's making an attempt to do a CRL check based on the URL in the cert (despite telling it to not do a CRL check or embed the OCSP response).

My new install (ES 8.2) will have internet access, however I'm trying to determine that if the lookup for the CRL and OCSP checks is going to happen automatically:

1 - What port will it try to make that call on from the application server?

2 - Does it cache this information for use on other documents to certify, or will it try to make this call each and every time I certify a document?

3 - It's also my understanding that the use of the Internet connection by LiveCycle is automatic and no configuration is needed, provided the proper ports have been opened up on the Linux machine, etc. Is that correct?

Thanks in advance,