16

Can anyone recommend a free and simple OCSP server for Windows or Linux?

warren
  • 17,829
  • 23
  • 82
  • 134
StackedCrooked
  • 1,317
  • 2
  • 13
  • 22
  • 2
    OCSP definition: http://en.wikipedia.org/wiki/Online_Certificate_Status_Protocol – warren Apr 07 '10 at 12:30
  • 2
    @Warren if you don't know what ocsp is, then you shouldn't answer the question. – Rook Apr 07 '10 at 20:33
  • 8
    @unknown, warren didn't answer, he used a comment to add a link to provide additional information. At the very least it saved me having to look up yet another never before seen acronym. – John Gardeniers Apr 07 '10 at 21:34

2 Answers2

13

The best free OCSP server is in the OpenCA package. Here is an example of creating a custom OCSP message. If you like java then you should use EJBCA.

I think windows has an OCSP server in the windows 2008 enterprise edition. I know it has other parts of the PKI. This isn't free.

Rook
  • 2,615
  • 5
  • 26
  • 34
  • 3
    There is also Fedora/Redhat's ''Dogtag'' http://pki.fedoraproject.org/wiki/PKI_Main_Page – gm3dmo Apr 07 '10 at 20:56
  • @unknown: Thanks, that looks very interesting. I'll give it a try tomorrow! – StackedCrooked Apr 13 '10 at 21:47
  • @The Rook: I was able to glue a solution using the OpenCA library. See this post: http://serverfault.com/questions/131983/openssl-how-to-setup-an-ocsp-server-for-checking-third-party-certificates. Thanks for the suggestion! – StackedCrooked Apr 15 '10 at 17:16
  • @StackedCrooked Thats awesome! OpenCA rocks, i'm glad i could help. – Rook Apr 15 '10 at 20:56
1

Windows Server 2008 and 2008 R2 Enterprise Editions both have OCSP as an option when you install the AD Cert Services. You can use both for testing purposes for 180-days. Download available from Microsoft.

Chris S
  • 77,337
  • 11
  • 120
  • 212