SSLOCSPEnable directive ignored when not configured in <Virtualhost>

Solution Verified - Updated -

Issue

  • We noticed the following:
    1. If directive SSLOCSPEnable On is set in <VirtualHost..> log message about OCSP check being initiated appears in the logs i.e. sending request to OCSP server as configured in module mod_ssl
    2. If directive SSLOCSPEnable On is not directly specified in <VirtualHost..> Virtual host will not perform OCSP check.
      why does 1) work but not 2)?
  • When SSLOCSPEnable is set to On in global/server configuration, it is not inherited by VirtualHosts.
    If I move the configurations inside the VirtualHost, failure happens as expected and SSL handshake is not completed.

Environment

Red Hat JBoss Web Server (JWS) 2.1.0

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content