Enable online OCSP/CRL checks

Online revocation checks don't provide a significant security benefit and are disabled by default.

If you enable this policy, Microsoft Edge will perform soft-fail, online OCSP/CRL checks. "Soft fail" means that if the revocation server can't be reached, the certificate will be considered valid.

If you disable the policy or don't configure it, Microsoft Edge won't perform online revocation checks.

Supported on: Microsoft Edge version 77, Windows 7 or later

Registry Hive	HKEY_LOCAL_MACHINE or HKEY_CURRENT_USER
Registry Path	Software\Policies\Microsoft\Edge
Value Name	EnableOnlineRevocationChecks
Value Type	REG_DWORD
Enabled Value	1
Disabled Value	0

msedge.admx

Administrative Templates (Computers)

Microsoft Edge - Default Settings (users can override)
Microsoft Edge
Microsoft Edge Update
- Applications
  - Microsoft Edge Beta
  - Microsoft Edge Canary
  - Microsoft Edge Dev
  - Microsoft Edge
  - Allow installation default
  - Allow Microsoft Edge Side by Side browser experience
  - Prevent Desktop Shortcut creation upon install default
  - Update policy override default
- Microsoft Edge WebView
  - Allow installation
  - Update policy override
- Preferences
  - Auto-update check period override
  - Time period in each day to suppress auto-update check
- Proxy Server
Microsoft Edge WebView2
- Loader Override Settings
  - Configure the location of the browser executable folder
  - Set the release channel search order preference

Administrative Templates (Users)

Microsoft Edge - Default Settings (users can override)
Microsoft Edge
Microsoft Edge WebView2
- Loader Override Settings
  - Configure the location of the browser executable folder
  - Set the release channel search order preference