• Hi, Pleskians! We are running a UX testing of our upcoming product intended for server management and monitoring.
    We would like to invite you to have a call with us and have some fun checking our prototype. The agenda is pretty simple - we bring new design and some scenarios that you need to walk through and succeed. We will be watching and taking insights for further development of the design.
    If you would like to participate, please use this link to book a meeting. We will sent the link to the clickable prototype at the meeting.
  • (Plesk for Windows):
    MySQL Connector/ODBC 3.51, 5.1, and 5.3 are no longer shipped with Plesk because they have reached end of life. MariaDB Connector/ODBC 64-bit 3.2.4 is now used instead.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.

Best Practice OCSP Stapling for Clients

J

Janko1000

Regular Pleskian
Hi all,

can Anybody tell what is the best Way to add OCSP Stapling for Clients?
I try to add the Commands to the Nginx Field but without success:

Code: 
ssl_stapling on;
ssl_stapling_verify on;
ssl_trusted_certificate /path/to/cert_chain.pem;
resolver 8.8.8.8 8.8.4.4 valid=300s;
resolver_timeout 5s;

The Clients have the Certs from everywhere.... Comodo, StartSSL, Thawte, WoSign and many others. I want only add OCSP for some Clients.
 
Make sure the certificate is setup for the domain and working then you should be able to use the following command per domain in the nginx additional directives field:

Code: 
#Enable OCSP
ssl_stapling on;
ssl_stapling_verify on;
resolver 8.8.4.4 8.8.8.8 valid=300s;
resolver_timeout 10s;
 
You must log in or register to reply here.

Similar threads

F
Issue OCSP for Plesk-Panel does not work
Replies
5
Views
2K
Peter Debik
P
K
Issue OCSP Stapling seems only working with www version of a domain
Replies
3
Views
953
learning_curve
learning_curve
P
Input Issues with Google DNS and name resolution of Let's Encrypt OSCP servers -> hanging Nginx reload and "nginx -t"
Replies
4
Views
3K
thinkjarvis
T
TimReeves
Issue Debian 10 Nginx fails to start - missing ssl_stapling resolver
Replies
0
Views
2K
TimReeves
TimReeves
Dukemaster
Resolved OCSP Stapling with Letsencrypt per domain
Replies
9
Views
5K
Dukemaster
Dukemaster
Back
Top