Skip to main content
Version: 3.14.x.x LTS

Enable OCSP validation

The sample code in the code block below illustrates how to enable a basic OCSP validation facility within nevisProxy:

<filter>
<filter-name>OCSP</filter-name>
<filter-
class>ch::nevis::navajo::apglue::httpd_${HTTPD_LIB_VERSION}_x::servlet::ApacheConfigFilter</filter-class>
<init-param>
<param-name>HostConfig</param-name>
<param-value>
SSLVerifyClient on
SSLOCSPEnable on
SSLOCSPDefaultResponder http://responder.example.com:8888/responder
SSLOCSPOverrideResponder on
</param-value>
</init-param>
</filter>

For more information, see the mod_ssl documentation (https://httpd.apache.org/docs/2.4/mod/mod_ssl.html#sslocspenable).