Validation Authority

Certificate authorities use Online Certificate Status Protocol (OCSP) to get the revocation status of x.509 digital certificates. When a user requests the validity of a certificate, an OCSP request is sent to an OCSP server for verification against a trusted certificate authority. The OCSP server then returns a response indicating whether the certificate is good, revoked, or unknown.

Prerequisites

OCSP URL must be published in the AIA field of the certificate with the AppViewX OCSP server URL.
Plugins required: OCSP Server and OCSP Generator must be deployed for OCSP to work.
For on-premise deployment, configure OCSP as explained here.

You can select one or more certificates from the inventory and click Actions > Revocation Check to perform revocation validation. After successful validation, the certificate status is reflected through color-coding in the Common Name column.