OCSP Installation

This section contains installation instructions for running EJBCA as an external OCSP responder, using a separate key pair and certificate to sign OCSP responses on behalf of a CA.

By default, each CA can sign OCSP responses out of the box using the CA key pair. To determine if you require an external OCSP responder, see External OCSP Responders.

If you are not using the responder with EJBCA, you can skip the step Building and Configuring the OCSP Responder and continue to Workflow for Setting up a new OCSP Signer.