Home Library Learn Samples Downloads Support Community Forums
This topic has not yet been rated - Rate this topic

IOCSPAdmin interface

The IOCSPAdmin interface provides functionality to manage an Online Certificate Status Protocol (OCSP) responder server. Implement this interface to manage individual responder server properties and certification authority (CA) definitions. After creating an instance of this interface, you call GetConfiguration to connect to a responder service and initialize an OCSPAdmin object. Each OCSPAdmin object corresponds to one physical responder server.

Note  This interface does not include functionality to create or parse certificate status requests.

In C++, you create an instance of this interface by calling the CoCreateInstance function with the CLSID_OCSPAdmin class identifier.

In Visual Basic Scripting Edition, you create an instance of the OCSPAdmin object.

Members

The IOCSPAdmin interface inherits from the IDispatch interface. IOCSPAdmin also has these types of members:

Methods

The IOCSPAdmin interface has these methods.

MethodDescription
GetConfiguration

Connects to a responder server and initializes an OCSPAdmin object with the configuration information from the server.

GetHashAlgorithms

Gets a list of hash-algorithm names. The responder server uses one of the named algorithms to sign OCSP responses for a given CA configuration.

GetMyRoles

Gets the access mask of privilege roles for a user on a given responder server.

GetSecurity

Gets security descriptor information for a responder server.

GetSigningCertificates

Gets the signing certificates that are available on a responder server for a given CA certificate.

Ping

Tests a DCOM connection with a responder service.

SetConfiguration

Updates a responder service with configuration changes.

SetSecurity

Updates security descriptor information for an OCSP responder server.

 

Properties

The IOCSPAdmin interface has these properties.

PropertyDescription

OCSPCAConfigurationCollection

Gets an instance of an OCSPCAConfigurationCollection object. This object represents the set of certificates for which a responder service can handle status requests.

OCSPServiceProperties

Gets an instance of a OCSPPropertyCollection object. This object represents the attributes of a responder service.

 

Remarks

The following table disambiguates the various properties used in the Microsoft OCSP architecture.

ArchitectureScopeInformation types
OCSPServiceProperties Governs general responder-service behavior for every CA.
  • Proxy
  • Audit
  • Security configurations
OCSPCAConfigurationCollection Governs response behavior for a specific CA.
  • CA
  • Hash algorithm
  • Certificate signing
  • Revocation provider configurations
ProviderProperties Governs behavior of a revocation information provider that is specific to a particular OCSPCAConfiguration.
  • Certificate revocation lists (CRLs)
  • Refresh interval

 

Requirements

Minimum supported client

None supported [desktop apps only]

Minimum supported server

Windows Server 2008 Datacenter, Windows Server 2008 Enterprise [desktop apps only]

IDL
Certadm.idl

Library
Certadm.lib

DLL
Certadm.dll

IID

IID_IOCSPAdmin is defined as 322E830D-67DB-4FE9-9577-4596D9F09294

 

 

Send comments about this topic to Microsoft

Build date: 10/26/2012

Did you find this helpful?
(1500 characters remaining)

Community Additions

ADD
© 2013 Microsoft. All rights reserved.