respondercert
Use this parameter to set a list of trusted verification certificates for each OCSP responder. If no trusted responder certificates are available, the toolkit attempts to verify the OCSP response with the trusted credentials at its disposal. If an OCSP response cannot be verified, the revocation status of the certificate cannot be verified. Configuring the list of responder certificates is therefore recommended.
Parameter syntax
<config name>. respondercert.<number> = <value>Where:
<value> is the physical location of a certificate in X509V3 format.
<number> is an integer starting with 0 and incrementing by 1 for each certificate configured.
When omitting this parameter, no trusted certificate list is set.
Parameter example
config0.respondercert.0 = C:/Entrust/respondercerts/responder1.cerconfig0.respondercert.1 = C:/Entrust/respondercerts/responder3.cerconfig0.respondercert.2 = C:/Entrust/respondercerts/responder6.cer