Does NGINX support URI (http.ldap) based CRL (revokation lists) checks? or how to handle CRL valid for 7 days

joovunir nginx-forum at
Mon May 7 14:04:09 UTC 2018


I know NGINX supports CRL in file format (PEM), but as the CRLs for my
certificate provider is only valid for 7 days, and downloading the files,
converting to PEM and so on is time consuming, I wonder if NGINX supports
URI based CRLs. 

I haven't found any thing in the documentation... so in case it doesn't
support it, how do you handle that? scripts to download/convert/move  the
files from your certificates' provider?

thanks in advance!

Posted at Nginx Forum:,279702,279702#msg-279702

More information about the nginx mailing list