This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello
we are providing OCSP (Microsoft) services which run on IIS.
In the process of hardening IIS the following findings have surfaced. May I ask for your input since the Internet does not provide any information:
Does OSCP utilize .Net? Which .Net trust level is needed
Which file extensions does OCSP need to be allowed in IIS?
Any help is highly appreciated
Thanks a lot
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.
Hello
Here are some links about deploying Windows OCSP.
However, it does not mentioned IIS features OCSP requires.
Implementing an OCSP responder: Part I - Introducing OCSP | Microsoft Community Hub
And here is a third-part link about how to install and configure OCSP.
Based on my knowledge, i should install IIS on the server when I install and configure CA and OCSP.
Best Regards,
Daisy Zhou
Hello Sabine Ludewig,
Thank you for posting in Microsoft Community forum.
From the description above, I understand your question is related to IIS.
Since there are no engineers dedicated to IIS in this forum. in order to be able to get a quick and effective handling of your issue, I recommend that you repost your question in the Q&A forum, where there will be a dedicated engineer to give you a professional and effective reply.
Here is the link for Q&A forum.
Questions - Microsoft Q&A
Click the "Ask a Question" button in the upper right corner to post your question and type "Internet Information Services" tag and select any tags related to your productions.
I hope the information above is helpful.
If you have any question or concern, please feel free to let us know.
Best Regards,
Daisy Zhou
Hello Daisy
my question is not particulary about IIS.
It's about about which IIS features OCSP requires (.Net trust level, allowed file extensions).
Thanks
