Never mind. Got it working after updating the following entry in the caServerCert.cfg: policyset.serverCertSet.5.default.params.authInfoAccessADLocation_0=http://ocsp.example.com:8080/ca/ocsp From: <Jain>, "Jain, Mahendra" <majain@verisign.com<mailto:majain@verisign.com>> Date: Monday, July 20, 2015 at 4:33 PM To: "pki-users@redhat.com<mailto:pki-users@redhat.com>" <pki-users@redhat.com<mailto:pki-users@redhat.com>> Subject: [Pki-users] Dogtag : Configuring default OCSP URI Hi, I'm running Fedora 21 with Dogtag 10.2.1-3 and would like to configure default OCSP URI that appears in the certificate. The certificate issued by Dogtag includes following OCSP details: Identifier: Authority Info Access: - 1.3.6.1.5.5.7.1.1 Critical: no Access Description: Method #0: ocsp Location #0: URIName: http://server.example.com:8080/ca/ocsp<http://ca-sw-master.end-points.... I would like to update the above URIName (via configuration) to something like http://ocsp.example.com:8080/ca/ocsp<http://ca-sw-master.end-points.co...;. Please advice. Thanks, Mahendra