• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Best Practice OCSP Stapling for Clients

J

Janko1000

Regular Pleskian
Hi all,

can Anybody tell what is the best Way to add OCSP Stapling for Clients?
I try to add the Commands to the Nginx Field but without success:

Code: 
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate /path/to/cert_chain.pem;
resolver 8.8.8.8 8.8.4.4 valid=300s;
resolver_timeout 5s;

The Clients have the Certs from everywhere.... Comodo, StartSSL, Thawte, WoSign and many others. I want only add OCSP for some Clients.
 
Make sure the certificate is setup for the domain and working then you should be able to use the following command per domain in the nginx additional directives field:

Code: 
#Enable OCSP
ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.4.4 8.8.8.8 valid=300s;
resolver_timeout 10s;
 
You must log in or register to reply here.

Similar threads

F
Issue OCSP for Plesk-Panel does not work
Replies
5
Views
436
Peter Debik
P
K
Issue OCSP Stapling seems only working with www version of a domain
Replies
3
Views
603
learning_curve
learning_curve
Dukemaster
Resolved OCSP Stapling with Letsencrypt per domain
Replies
9
Views
4K
Dukemaster
Dukemaster
W
Question What is the proper nginx additional directives with wordpress
Replies
0
Views
2K
Walter
W
Dukemaster
Input PLESK reaches the stars with only Nginx + HSTS (390%)
Replies
1
Views
2K
mr-wolf
M
Back
Top