Skip to content
ATO Pathways
Log In
Overview
Search
Catalogs
SCAP
OSCAL
Catalogs
Profiles
Documents
References
Knowledge Base
Platform Documentation
Compliance Dictionary
Platform Changelog
About
Catalogs
XCCDF
Guide to the Secure Configuration of Red Hat Enterprise Linux 8
Services
System Security Services Daemon
Certificate status checking in SSSD
Certificate status checking in SSSD
An XCCDF Rule
Details
Profiles
Prose
Certificate status checking in SSSD
Medium Severity
Multifactor solutions that require devices separate from information systems gaining access include, for example, hardware tokens providing time-based or challenge-response authenticators and smart cards. Configuring
certificate_verification
to
ocsp_dgst=
ensures that certificates for multifactor solutions are checked via Online Certificate Status Protocol (OCSP).