Forum Discussion

Cirrus

Feb 07, 2023

OCSP revocated CA

Hello all, we configured an APM policy that perform OCSP Auth for client certs whom is working great. Now we would like to add a new piece and verify even if the Intermediate CA, that signed the cl...

application delivery

devops

Lucas_Thompson

Employee

Feb 09, 2023

Hi Satoshino,

You present an interesting problem, it sounds like you're trying to ignore the certificate trust chain? Could you explain further how you'd like to do it? I don't exactly understand how you'd correctly validate trust when one member of the trust chain is invalid.

An APM policy for OCSP will query the CA for OCSP status.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)