Managing OCSP server certificates
Go to System > Certificate > Remote to view and import the certificates of the online certificate status protocol (OCSP) servers of your certificate authority (CA).
OCSP lets you revoke or validate certificates by query, rather than by importing certificate revocation lists (CRL). For information about importing CRLs, see
“Managing the certificate revocation list”.
Remote certificates are required if you enable OCSP for PKI users. For more information, see
“Configuring PKI authentication”.
To access this part of the web UI, your administrator account’s:
• Domain must be System
• access profile must have Read or Read-Write permission to the Others category
To view a the list of remote certificates, go to System > Certificate > Remote.
Table 43: Managing OCSP server certificates
GUI item | Description |
Delete (button) | Removes the selected certificate. |
View (button) | Select a certificate and click View to display certificate details including the certificate name, issuer, subject, and the range of dates within which the certificate is valid. |
Download (button) | Click the row of a certificate in order to select it, then click Download to download a copy of the OCSP server certificate (.cer). |
Import (button) | Click to import an OCSP server certificate. |
Name | Displays the name of the OCSP server certificate. |
Subject | Displays the Distinguished Name (DN) located in the Subject field of the certificate. |