Chapter 21 Setting Up An Ocsp Responder - Netscape MANAGEMENT SYSTEM 6.0 Installation And Setup Manual
Hide thumbs
Also See for NETSCAPE MANAGEMENT SYSTEM 6.0:
- Manual (302 pages) ,
- Installation and migration manual (66 pages) ,
- Administrator's manual (470 pages)
Table of Contents
Advertisement
Setting Up an OCSP Responder
Netscape Certificate Management System (CMS) provides a customizable
publishing framework for the Certificate Manager, enabling it to publish
certificates and certificate revocation lists (CRLs) to any of the supported
repositories—an LDAP-compliant directory, a flat file, and an online validation
authority—using the appropriate protocol. This chapter provides an overview of
an Online Certificate Status Protocol (OCSP)-compliant PKI setup, and explains
how you can use the OCSP service built into the Certificate Manager for real-time
verification of certificates issued by the Certificate Manager. The chapter also
explains how to configure one or more Certificate Managers to publish CRLs to the
OCSP responder, called Online Certificate Status Manager, provided with
Certificate Management System.
Note that configuring the Certificate Manager to publish CRLs is optional—you
can turn this feature off without affecting any of the certificate issuance and
management operations handled by the server.
The chapter has the following sections:
•
What's an OCSP-Compliant PKI Setup? (page 670)
•
Setting Up a Certificate Manager with OCSP Service (page 675)
•
Setting Up a Remote OCSP Responder (page 687)
Chapter 21
669
Advertisement
Table of Contents
