Multi Certificate Support with OCSP not working right

mastercan nginx-forum at forum.nginx.org
Sat Sep 3 13:09:19 UTC 2016


Hello,

When using 2 certificates, 1 RSA (using AlphaSSL) and 1 ECDSA (using Lets
Encrypt), and I try to connect via RSA SSL connection, nginx throws this
error:

"OCSP response not successful (6: unauthorized) while requesting certificate
status, responder: ocsp.int-x3.letsencrypt.org"

So it is using the wrong responder.

Following build (custom compiled):
Nginx 1.11.3
Openssl 1.1.0

AFAIK OpenSSL 1.1.0 should support multiple certificate chains. I don't
quite understand why OCSP then is not working right?

Posted at Nginx Forum: https://forum.nginx.org/read.php?2,269371,269371#msg-269371



More information about the nginx mailing list