Will the Agencies validate directly with GSA MSO SSP CA directory(ies) or through the SIP?
As noted above, the CA publishes CRLs to the Master Directory. Subscribers do not have direct access to the Master Directory and must retrieve the CRLs from either the Shadow Directory or the HTTP server. The third option is to retrieve certificate validation information via the EMS OCSP responder.
Related Questions
- Yes, directory chaining is supported. Back To Top What do the Agencies need to do to validate the GSA MSO SSP issued certificates?
- Which directory(ies) will the GSA MSO CA write to for posting public certificates and CRLs for certificate status?
- Will the Agencies validate directly with GSA MSO SSP CA directory(ies) or through the SIP?