Mar 25 2022 08:03 AM
Since the Windows servers (2016) we are using don't have internet access, it would take very long time (10-30secs ) to open an application (Putty, Notepad++, Word, Excel, Adobe PDF reader and so on). Once the application is launched, the subsequent launching would be very fast (1-3 sec). But the long delay opening application will happen again after some time (1-2 days). As I investigate, it's likely to be related to CRL check on the code-signed applications. I flush dns cache and then launch the application, for example, notepad++, I got the dns cache indicating the server was trying to contact crl3.digicert.com or ocsp.digicert.com. Even I unchecked the Check for publisher's certificate revocation option under Control Panel -> Internet Options -> Advanced -> security, it remained the same. I traced the DNS local cache, it is still trying to reach the CRL sites to verify the certificates. I am at a loss now, can anyone help please? Thanks.
Mar 30 2022 12:13 PM
Mar 31 2022 10:30 AM
thanks @Harm_Veenstra It looks like it's related to XDR on the server.
Mar 31 2022 11:32 AM
Mar 31 2022 11:39 AM
SolutionMar 31 2022 11:39 AM
Solution