1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

SSL - OCSP stapling and nginx, rapidssl

Discussion in 'Forum Management' started by Mouth, Jan 26, 2015.

  1. Mouth

    Mouth Well-Known Member

    Does anyone have OCSP stapling active/working on their nginx with rapidssl certificate?

    My nginx conf is ...
            ssl_certificate netrider.net.au.crt;
            ssl_certificate_key netrider.net.au.key;
            add_header Strict-Transport-Security $hsts_header;
            ssl_stapling            on;
            ssl_stapling_verify     on;
            ssl_trusted_certificate rapidssl.pem;
    netrider.net.au.crt contains my server certificate
    rapidssl.pem contains the intermediary certificate from https://ssl-tools.net/certificates/nakw2x-rapidssl-sha256-ca-g3

    My SSLLabs test at https://www.ssllabs.com/ssltest/analyze.html?d=netrider.net.au is still showing OCSP stapling as no.
  2. MattW

    MattW Well-Known Member

    You need to have a resolver configured in there as well

      resolver valid=300s;
      resolver_timeout 10s;
  3. Mouth

    Mouth Well-Known Member

    Yes, thanks. Got that already. Forgot to include it in OP
  4. Andy.N

    Andy.N Well-Known Member

    Mouth likes this.
  5. rainmotorsports

    rainmotorsports Well-Known Member

    Mouth likes this.
  6. Mouth

    Mouth Well-Known Member

    Andy.N likes this.

Share This Page