Hello @List Box at name ,
Thank you for posting here.
To better understand your question, please confirm the following information at your convenience:
1.Based on the description above, you configured the OCSP responder through openssl 1.1.1f instead of on one Windows CA server, is it right?
2.Where did you run the command above (on one Windows server or Windows client)?
3.Does ocsp responce is a file? If so, why did not you copy the file to all these Windows machines manually?
I cannot see such command (certutil with parameter -downloadocsp) based on the certutil command usage.
certutil
https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/certutil
Should you have any question or concern, please feel free to let us know.
Best Regards,
Daisy Zhou
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.