| Event Source: | Microsoft-Windows-OnlineResponder |
| Event ID: | 36 (0x24) |
| Event log: | Application |
| Event type: | Information |
| Event text (English): | The Online Responder Service successfully enrolled for a new signing certificate for configuration %1. The new certificate's hash can be located in additional data. |
| Event text (German): | The online responder service has successfully registered for a new signing certificate for the %1 configuration. The hash value for the new certificate is included in the additional data. |
Parameter
The parameters contained in the event text are filled with the following fields:
- %1: CAConfigurationId (win:UnicodeString)
- %2: CertificateHash (win:Binary)
The Online Responder (Online Certificate Status Protocol, OCSP) is an alternative way of providing revocation status information for certificates. Entities that want to check the revocation status of a certificate do not have to download the complete list of all revoked certificates thanks to OCSP, but can make a specific request for the certificate in question to the online responder. For a more detailed description, see the article "Basics Online Responder (Online Certificate Status Protocol, OCSP)„.
Example events
The Online Responder Service successfully enrolled for a new signing certificate for configuration ADCS Labor Issuing CA 1 (0). The new certificate's hash can be located in additional data.
Description
No description has been written for this yet.
Safety assessment
The security assessment is based on the three dimensions of confidentiality, integrity and availability.
No description has been written for this yet.
Related links:
- Overview of Windows events generated by the online responder (OCSP)
- Overview of the audit events generated by the online responder (OCSP)
English 
Deutsch