Opened 22 months ago

Last modified 6 weeks ago

#1534 new enhancement

OCSP client certificate validation

Reported by: gfrankliu@… Owned by:
Priority: minor Milestone:
Component: nginx-core Version: 1.13.x
Keywords: OCSP client certificate Cc:
uname -a: Linux
nginx -V: 1.14.0

Description

As discussed here https://forum.nginx.org/read.php?2,252893,252895
It would be great if nginx can support using OCSP for validating client certificates.

Change History (6)

comment:1 by laurivosandi@…, 21 months ago

I am also interested in this feature

comment:2 by maxim, 15 months ago

Milestone: 1.15nginx-1.15

Milestone renamed

comment:3 by boardbloke@…, 15 months ago

+1 We have a number of use cases that require Mutual TLS with OCSP responder checking.

We would really like to be able to use NGINX for this, but presently have no option but to use competitor products

comment:4 by maxim, 10 months ago

Milestone: nginx-1.15

Ticket retargeted after milestone closed

comment:5 by sempercr@…, 9 months ago

Again as stated by my colleague in a previous post, we have several use cases that require Mutual TLS with OCSP responder checking. Since we have already implemented Nginx within our Ecosystem, we would like to move forward with a solution from the NGINX team. Please look into providing this as this would benefit the community as a hole.

comment:6 by kurbar@…, 6 weeks ago

Estonia uses OCSP to verify client certificate validity for national ID cards. This feature would be awesome as it would make identifications more effective.

Note: See TracTickets for help on using tickets.