IOCSPAdmin interface (certadm.h)

The IOCSPAdmin interface provides functionality to manage an Online Certificate Status Protocol (OCSP) responder server. Implement this interface to manage individual responder server properties and certification authority (CA) definitions. After creating an instance of this interface, you call GetConfiguration to connect to a responder service and initialize an OCSPAdmin object. Each OCSPAdmin object corresponds to one physical responder server.

Note  This interface does not include functionality to create or parse certificate status requests.
 
In C++, you create an instance of this interface by calling the CoCreateInstance function with the CLSID_OCSPAdmin class identifier.

In Visual Basic Scripting Edition, you create an instance of the OCSPAdmin object.

Inheritance

The IOCSPAdmin interface inherits from the IDispatch interface. IOCSPAdmin also has these types of members:

Methods

The IOCSPAdmin interface has these methods.

 
IOCSPAdmin::get_OCSPCAConfigurationCollection

Gets an instance of an OCSPCAConfigurationCollection object. This object represents the set of certification authority (CA) certificates for which an Online Certificate Status Protocol (OCSP) responder service can handle status requests.
IOCSPAdmin::get_OCSPServiceProperties

Gets an instance of an OCSPPropertyCollection object. This object represents the attributes of an Online Certificate Status Protocol (OCSP) responder service.
IOCSPAdmin::GetConfiguration

Connects to an Online Certificate Status Protocol (OCSP) responder server and initializes an OCSPAdmin object with the configuration information from the server.
IOCSPAdmin::GetHashAlgorithms

Gets a list of hash-algorithm names. The Online Certificate Status Protocol (OCSP) responder server uses these names to sign OCSP responses for a given certification authority (CA) configuration.
IOCSPAdmin::GetMyRoles

Gets the access mask of privilege roles for a user on a given Online Certificate Status Protocol (OCSP) responder server.
IOCSPAdmin::GetSecurity

Gets security descriptor information for an Online Certificate Status Protocol (OCSP) responder server.
IOCSPAdmin::GetSigningCertificates

Gets the signing certificates that are available on a responder server for a given certification authority (CA) certificate.
IOCSPAdmin::Ping

Tests a DCOM connection with an Online Certificate Status Protocol (OCSP) responder service.
IOCSPAdmin::SetConfiguration

Updates a responder service with configuration changes.
IOCSPAdmin::SetSecurity

Updates security descriptor information for an Online Certificate Status Protocol (OCSP) responder server.

Remarks

The following table disambiguates the various properties used in the Microsoft OCSP architecture.

Architecture Scope Information types
OCSPServiceProperties Governs general responder-service behavior for every CA.
  • Proxy
  • Audit
  • Security configurations
OCSPCAConfigurationCollection Governs response behavior for a specific CA.
  • CA
  • Hash algorithm
  • Certificate signing
  • Revocation provider configurations
ProviderProperties Governs behavior of a revocation information provider that is specific to a particular OCSPCAConfiguration.
  • Certificate revocation lists (CRLs)
  • Refresh interval

Requirements

Requirement Value
Minimum supported client None supported
Minimum supported server Windows Server 2008 Datacenter, Windows Server 2008 Enterprise [desktop apps only]
Target Platform Windows
Header certadm.h

See also

IDispatch