1) if i do include ocsp url in the client cert, is the oscp request sent out by client or the clearpass?
2) if i do not include ocsp url in the client cert, instead i overwrite oscp url from client in the authentication method; is the oscp request sent out by client or the clearpass?