using ssl_crl with CRLs (plural)
Florian Le Goff
bletofarine at gmail.com
Tue Apr 22 16:13:54 UTC 2014
Hi there,
I am trying to setup a x509 client cert check with Nginx. Everything
is running smoothly until I add the ssl_crl directive.
Unfortunately, my CA happens to release its CRLs under several
files... for historic reasons from what I heard.
With Apache/mod_ssl; the SSLCARevocationFile directive sets a
concatenated PEM-encoded CA CRLs, even if concatenated files are not
fully compliant with the CRL logic.
Is it something that might be setup with nginx ? The ability to setup
a list of the individual files somewhere in the nginx configuration
would be optimal.
Thanks,
Ref: http://serverfault.com/questions/565445/how-to-check-multiple-crl-lists-with-nginx-client-authentication?rq=1
--
Florian Le Goff
More information about the nginx
mailing list