Policy
Require OCSP at signature generation time
Microsoft Office 5532.1000
Policy overview
Key metadata and intent for this policy.
This policy setting lets you determine whether Office 2016 requires OCSP (Online Certificate Status Protocol) revocation data for all digital certificates in a chain when digital signatures are generated. If you enable this policy setting, Office 2016 requires OCSP revocation data for all certificates in a chain when digital signatures are generated. If you disable or do not configure this policy setting, Office 2016 does not set any restrictions on what type of revocation data is to be used.
Registry values
How enabled and disabled states update the registry.
| Registry location | Type | Enabled value | Disabled value |
|---|---|---|---|
| HKCU\software\policies\microsoft\office\16.0\common\signatures\requireocsp | REG_DWORD | 1 | 0 |
Policy elements
Inputs and configuration options exposed by this policy.
This policy has no additional user input fields.
Other policies in this category
Explore related policies at the same level.
- UserCheck the XAdES portions of a digital signatureWindows7
- UserConfigure invalid DSA public key sizeWindows7
- UserConfigure invalid hashing algorithmWindows7
- UserConfigure invalid RSA public key sizeWindows7
- UserConfigure legacy DSA public key sizeWindows7
- UserConfigure legacy hashing algorithmWindows7
- UserConfigure legacy RSA public key sizeWindows7
- UserConfigure minimum DSA public key sizeWindows7
- UserConfigure minimum RSA public key sizeWindows7
- UserConfigure time stamping hashing algorithmWindows7
- UserDisplay alternative certificate providersWindows7
- UserDo not allow expired certificates when validating signaturesWindows7