IOCSPAdmin interface

The IOCSPAdmin interface provides functionality to manage an Online Certificate Status Protocol (OCSP) responder server. Implement this interface to manage individual responder server properties and certification authority (CA) definitions. After creating an instance of this interface, you call GetConfiguration to connect to a responder service and initialize an OCSPAdmin object. Each OCSPAdmin object corresponds to one physical responder server.

Note  This interface does not include functionality to create or parse certificate status requests.
 
In C++, you create an instance of this interface by calling the CoCreateInstance function with the CLSID_OCSPAdmin class identifier.

In Visual Basic Scripting Edition, you create an instance of the OCSPAdmin object.

Methods

The IOCSPAdmin interface has these methods.

Method Description
IOCSPAdmin::get_OCSPCAConfigurationCollection Gets an instance of an OCSPCAConfigurationCollection object. This object represents the set of certification authority (CA) certificates for which an Online Certificate Status Protocol (OCSP) responder service can handle status requests.
IOCSPAdmin::get_OCSPServiceProperties Gets an instance of an OCSPPropertyCollection object. This object represents the attributes of an Online Certificate Status Protocol (OCSP) responder service.
IOCSPAdmin::GetConfiguration Connects to an Online Certificate Status Protocol (OCSP) responder server and initializes an OCSPAdmin object with the configuration information from the server.
IOCSPAdmin::GetHashAlgorithms Gets a list of hash-algorithm names. The Online Certificate Status Protocol (OCSP) responder server uses these names to sign OCSP responses for a given certification authority (CA) configuration.
IOCSPAdmin::GetMyRoles Gets the access mask of privilege roles for a user on a given Online Certificate Status Protocol (OCSP) responder server.
IOCSPAdmin::GetSecurity Gets security descriptor information for an Online Certificate Status Protocol (OCSP) responder server.
IOCSPAdmin::GetSigningCertificates Gets the signing certificates that are available on a responder server for a given certification authority (CA) certificate.
IOCSPAdmin::Ping Tests a DCOM connection with an Online Certificate Status Protocol (OCSP) responder service.
IOCSPAdmin::SetConfiguration Updates a responder service with configuration changes.
IOCSPAdmin::SetSecurity Updates security descriptor information for an Online Certificate Status Protocol (OCSP) responder server.

Remarks

The following table disambiguates the various properties used in the Microsoft OCSP architecture.

Architecture Scope Information types
OCSPServiceProperties Governs general responder-service behavior for every CA.
  • Proxy
  • Audit
  • Security configurations
OCSPCAConfigurationCollection Governs response behavior for a specific CA.
  • CA
  • Hash algorithm
  • Certificate signing
  • Revocation provider configurations
ProviderProperties Governs behavior of a revocation information provider that is specific to a particular OCSPCAConfiguration.
  • Certificate revocation lists (CRLs)
  • Refresh interval

Requirements

   
Windows version None supported Windows Server 2008 Datacenter, Windows Server 2008 Enterprise [desktop apps only]
Target Platform Windows
Header certadm.h

See Also

IDispatch