Version: 3.14.x.x LTS

Enable OCSP validation

The sample code in the code block below illustrates how to enable a basic OCSP validation facility within nevisProxy:

<filter>
 <filter-name>OCSP</filter-name>
 <filter-
class>ch::nevis::navajo::apglue::httpd_${HTTPD_LIB_VERSION}_x::servlet::ApacheConfigFilter</filter-class>
 <init-param>
   <param-name>HostConfig</param-name>
   <param-value>
     SSLVerifyClient on
     SSLOCSPEnable on
     SSLOCSPDefaultResponder http://responder.example.com:8888/responder
     SSLOCSPOverrideResponder on
   </param-value>
 </init-param>
</filter>

For more information, see the mod_ssl documentation (https://httpd.apache.org/docs/2.4/mod/mod_ssl.html#sslocspenable).