<html><head><meta http-equiv="content-type" content="text/html; charset=utf-8"></head><body dir="auto"><div dir="ltr"></div><div dir="ltr"><a href="https://trac.nginx.org/nginx/ticket/1534">https://trac.nginx.org/nginx/ticket/1534</a></div><div dir="ltr"><br>On Apr 13, 2019, at 12:16 AM, itplayer <<a href="mailto:nginx-forum@forum.nginx.org">nginx-forum@forum.nginx.org</a>> wrote:<br><br></div><blockquote type="cite"><div dir="ltr"><span>Hi,</span><br><span>I'm wondering that if NGINX currently(I use 1.14.1) support client</span><br><span>certificate OCSP validation?</span><br><span>The use case is when client try to login our web application, NGINX sit in</span><br><span>front of the application as reverse-proxy, does NGINX can verify the client</span><br><span>cert to make sure the client cert doesn't revoked by authority?</span><br><span></span><br><span>If yes, my configuration below is correct?</span><br><span></span><br><span> ssl_stapling on;</span><br><span> resolver 8.8.8.8;</span><br><span> ssl_stapling_responder <a href="http://10.10.10.10:2560">http://10.10.10.10:2560</a>;</span><br><span> ssl_stapling_verify on;</span><br><span> ssl_trusted_certificate /etc/nginx/test/ca_chains.pem;</span><br><span></span><br><span></span><br><span>Thanks in advanced.</span><br><span></span><br><span>Posted at Nginx Forum: <a href="https://forum.nginx.org/read.php?2,283763,283763#msg-283763">https://forum.nginx.org/read.php?2,283763,283763#msg-283763</a></span><br><span></span><br><span>_______________________________________________</span><br><span>nginx mailing list</span><br><span><a href="mailto:nginx@nginx.org">nginx@nginx.org</a></span><br><span><a href="http://mailman.nginx.org/mailman/listinfo/nginx">http://mailman.nginx.org/mailman/listinfo/nginx</a></span><br></div></blockquote></body></html>