Red Hat Training

A Red Hat training course is available for Red Hat JBoss Web Server

5.4. Configure Apache HTTP Server to Validate OCSP Certificates

Before configuring Apache HTTP Server to validate OCSP certificates, ensure that a Certificate Authority (CA) and an OCSP Responder is configured correctly. The example below shows how to enable OCSP validation of client certificates:

Example 5.1. 

Use the SSLOCSPEnable attribute to enable OCSP validation:
# Require valid client certificates (mutual auth)
  SSLVerifyClient require
  SSLVerifyDepth  3
  # Enable OCSP
  SSLOCSPEnable on
  SSLOCSPOverrideResponder on