Uploaded image for project: 'TrueNAS'
  1. TrueNAS
  2. NAS-108202

bad signature because OCSP stapling not activated in the nginx config file

    XMLWordPrintable

    Details

      Description

      Most browsers currently have the stapling check set to true

      e.g. Firefox/Chrome security.ssl.enable_ocsp_stapling = true

      As a result, even if the certificate is valid, the browser still throws "SEC_ERROR_OCSP_BAD_SIGNATURE".

      cause : stapling is not uncommented in the nginx config file when the certificate is configured.

      ssl_stapling on;
      ssl_stapling_verify on;

        Attachments

          Attachments

            JEditor

              Activity

                People

                Assignee:
                waqar Waqar Ahmed
                Reporter:
                Kerstens Jan
                Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                  Dates

                  Created:
                  Updated:
                  Resolved: