OCSP (Online Certificate Status Protocol) is an Internet protocol used for obtaining the revocation status of an X.509 digital certificate. The OCSP authentication type allows the verification of user certificates in order to increase security. You can use this authentication type for Common Access Cards (CAC).
You can configure the NetMRI OCSP authentication service to work in two ways:
Check user certificate for validity.
Check user certificate for validity and revocation.
For more information, see the next section. You can also configure the OCSP service using the cac command from the administrative shell.