> >> As a workaround, how could we check the CRL validation status in our custom >> plugin during the authorize hook? > > You can get the current remote auth_cfg from the IKE_SA and look if you > have any RULE_CRL_VALIDATION and if so what value it has. Thanks for your answer! Regards, Emeric