OCSP validation of client certificates

Maxim Dounin mdounin at mdounin.ru
Fri Jan 3 03:17:27 UTC 2014


Hello!

On Thu, Jan 02, 2014 at 05:03:36PM -0500, nginx_developer wrote:

> Hi Forum,
>        I see that nGinx supports configuration to perform OCSP validation of
> server side certificates and staple the validation response to the client.
> My question is whether nGinx supports OCSP validation of client presented
> certificates. 
> 
> I seem to hit a dead end with documentation for that question. Would be
> helpful if someone could answer this. 

No.  Only explicitly loaded CRLs are supported, see 
http://nginx.org/r/ssl_crl.

-- 
Maxim Dounin
http://nginx.org/



More information about the nginx mailing list