AnsweredAssumed Answered

Rekeyed certificate, now OCSP stapling failing and getting OCSP errror

Question asked by justink101 on Apr 8, 2014
Latest reply on Apr 10, 2014 by justink101

Just rekeyed our SSL certificate due to heartbleed, but now we are getting a OCSP ERROR and showing OCSP Stapling No. We had OCSP stapling working previously.

 

Anything we need to do? We are using nginx and a stapling.trusted.crt file.

 

    ssl_stapling on;

    ssl_stapling_verify on;

    ssl_trusted_certificate /etc/nginx/ssl/stapling.trusted.crt;

    resolver 208.67.222.222 208.67.220.220 valid=300s;

    resolver_timeout 10s;

 

Here is our report: https://www.ssllabs.com/ssltest/analyze.html?d=api.commando.io&s=198.199.101.100

Outcomes