OCSP stapling for client certificates

Mohammad Dhedhi mohammad.dhedhi at droidcloud.mobi
Wed Aug 27 16:51:08 UTC 2014


I was able to setup nignx with client certificate authentication and OCSP
stapling. I however noticed that OCSP is used only for the nginx server ssl

It does not use OCSP for validating client certificates to see if a client
is using a revoked certificate or not. Is ssl_crl the only way to checked
for revoked client certificates or can nginx be configured to use OCSP for
client certificates ?

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nginx.org/pipermail/nginx/attachments/20140827/96adf1d1/attachment.html>

More information about the nginx mailing list