No announcements
Found 1150452 threads
-
0 VotesOCSP issue in MS CA
Hi, If this question has any update or is this issue solved?Answered | 3 Replies | 1143 Views | Created by SoumenG - Tuesday, July 23, 2019 3:52 PM | Last reply by Daisy Zhou - Monday, July 29, 2019 8:28 AM
-
0 Votes
OCSP for Issuing CA
I never configure OCSP URLs in the root CA for the exact reason you mention.Answered | 1 Replies | 679 Views | Created by Gal A - Tuesday, April 28, 2015 2:31 PM | Last reply by Brian Komar [MVP] - Tuesday, April 28, 2015 2:35 PM -
0 Votes
root CA and subordinate CA have the same OCSP?
See the reply from Vadims Padans in a similar post (and I do agree): "There are no advantages in configuring OCSP for root ...Answered | 2 Replies | 1423 Views | Created by Quintus_ - Saturday, August 27, 2016 4:37 PM | Last reply by Anne He - Tuesday, September 6, 2016 1:45 AM -
1 Votes
certutil OCSP issues - Expired "OCSP" Time: 0
Microsoft OCSP Responder is a server service that reads a CA's CRL.Answered | 5 Replies | 4103 Views | Created by Recreate autodiscover virtual directory - Tuesday, October 11, 2016 11:57 AM | Last reply by Mark B. Cooper - Friday, October 21, 2016 4:13 PM -
1 Votes
OCSP Responder configured with 3rd Party CA's
Actually I do, we are working on the next step, which is configure the the ca to issue an ocsp response signing certificate.Answered | 4 Replies | 2321 Views | Created by Hardworking IT - Saturday, February 8, 2014 3:00 PM | Last reply by Hardworking IT - Wednesday, March 5, 2014 5:56 PM -
0 Votes
OCSP Configuration with Root offline CA question
>Now, I know that the offline root CA isn't an Enterprise CA, but the root ca cert IS published in Active Directory.Answered | 1 Replies | 1024 Views | Created by bronxbomber2k7 - Friday, December 4, 2015 4:48 PM | Last reply by Steven_Lee0510 - Tuesday, December 8, 2015 6:22 AM -
0 Votes
OCSP Issue with CAExchange Key
Also, if using an HSM for the OCSP responder private key, a short breakdown in communication between the OCSP server and the HSM can cause similar ...Answered | 4 Replies | 880 Views | Created by AndyJLyon - Thursday, September 24, 2015 11:40 AM | Last reply by Brian Komar [MVP] - Friday, October 2, 2015 1:24 PM -
1 Votes
OCSP
Tumbleweed uses a direct connection to the CA database What you need to remember is that the 2008/2008R2 OCSP responders are built to increase performance of ...Answered | 4 Replies | 7419 Views | Created by PaulT15 - Friday, May 27, 2011 9:01 PM | Last reply by Brian Komar _MVP - Tuesday, May 31, 2011 10:04 PM -
1 Votes
Issues with invalid OCSP location in PKIview
If you revoke the last CA Exchange certificate, and issue a new one certutil -cainfo xchg export the new certificate and run certutil ...Answered | 10 Replies | 1617 Views | Created by TechieBuff - Friday, January 30, 2015 3:08 AM | Last reply by TechieBuff - Thursday, February 12, 2015 2:05 AM -
1 Votes
Offline Root CA - OCSP URL configuration under extension
OCSP on root CA makes little sense, as empty CRL is about 500-600 bytes, while OCSP transaction consumes about 2kb.Answered | 6 Replies | 4709 Views | Created by Anil Kumar Raju - Thursday, December 10, 2015 12:53 PM | Last reply by patrickguinn - Wednesday, April 20, 2016 8:18 PM -
3 Votes
ocsp unsuccessful
Hi, Kindly let us know if there's any progress with MS.Answered | 10 Replies | 2242 Views | Created by Mike_Gray - Monday, October 17, 2016 12:54 PM | Last reply by Amy Wang_ - Saturday, October 22, 2016 11:10 AM -
0 Votes
Installing OCSP
So now, I will decide installing either ocsp role on the issuing CA or ocsp role and iis serving crl on an independent server.Answered | 4 Replies | 1103 Views | Created by ZazAra - Tuesday, September 4, 2018 10:17 AM | Last reply by ZazAra - Tuesday, September 4, 2018 5:23 PM -
0 Votes
How to specify OCSP URL in AIA extension of already issued enterprise subordinate CA certificates ?
I think for now I will stick with OCSP only on the issuing CAs, and not implement OCSP on the root CA, since iOS revocation checking even with ...Answered | 7 Replies | 3060 Views | Created by Mario Alvares - Saturday, November 28, 2015 2:53 AM | Last reply by Vadims Podans - Monday, November 30, 2015 5:38 PM -
0 Votes
PKI Design - ocsp vs delta CRLs, separating CRL hosting from issuing CAs
I am fine with running two (or more) separate issuing CAs.Answered | 6 Replies | 1587 Views | Created by EuroTechie2013 - Thursday, February 19, 2015 12:14 PM | Last reply by Brian Komar [MVP] - Thursday, February 19, 2015 6:35 PM -
0 Votes
OCSP server primary secondary installation
As MS and others recommend it is best to separate the other role services from the CA itself.Answered | 5 Replies | 2041 Views | Created by Neha.ga - Monday, January 19, 2015 11:29 AM | Last reply by Calin Liviu - Thursday, January 22, 2015 2:23 PM -
9 Votes
OCSP Location #1 Error
I have the same issue 2 tier PKI env (Root CA, CA1, CA2) the OSCP for CA1 has an error in PKI View.Answered | 13 Replies | 20555 Views | Created by Vegas588 - Tuesday, January 17, 2012 1:11 PM | Last reply by Schuetti3000 - Thursday, October 26, 2017 3:25 PM -
0 Votes
Where to Initially Enable OCSP?
Still the same: - Root CA certificate: No AIA or CDP - Root CA issued certificate: AIA and CDP, no OCSP URI in the AIA ...Answered | 9 Replies | 7073 Views | Created by Vegas588 - Wednesday, January 18, 2012 3:37 AM | Last reply by Brian Komar [MVP] - Wednesday, September 21, 2016 3:04 PM -
0 Votes
Correctly configuring OCSP Responder
I'm with Brian, I suspect there is an CAExchange certificate that was issued on the CA prior to creating and deploying the OCSP server.Answered | 6 Replies | 2543 Views | Created by Aetius2012 - Monday, October 5, 2015 7:38 PM | Last reply by Mark B. Cooper - Tuesday, October 6, 2015 1:46 PM -
4 Votes
OCSP missing in IIS 8.5
Hi, Regarding IIS related issue, I suggest you refer to experts from IIS forum below: http://forums.iis.net/ Best ...Answered | 5 Replies | 4810 Views | Created by joele89 - Tuesday, October 28, 2014 6:52 AM | Last reply by ejanakieff - Wednesday, June 22, 2016 12:22 PM -
0 Votes
OCSP Responder implementation - is the default website required?
I would not implement OCSP for the root CA, as the root CA only issue subCA certificates and with the long lived CRL of the root CA ...Answered | 2 Replies | 2336 Views | Created by EuroTechie2013 - Thursday, March 10, 2016 5:50 PM | Last reply by Vadims Podans - Friday, March 11, 2016 7:07 AM - Items 1 to 20 of 1150452 Next ›
No announcements
