OCSP URL format
Alex Sharaz
alex.sharaz at york.ac.uk
Fri Apr 1 00:50:52 CEST 2016
Did have a load balancer (F5) was all working and then some thing changed and all the FR severs forwarding OCSP requests ( like from
Networkshop in Manchester :/)) ) stopped working. Our systems people fixed it ... But it was working. Just glad we didn't have shedloads of people using EAP-TLS :-))
A
Sent from my iPhone 6 plus
> On 31 Mar 2016, at 23:05, Matthew Newton <mcn4 at leicester.ac.uk> wrote:
>
>> On Tue, Mar 29, 2016 at 01:14:13PM +0100, Alex Sharaz wrote:
>> Quick question about OCSP URLs. When overriding the cert specified OCSP
>> URL, can you specify more than one just in case a server dies for example?
>
> Get a load balancer.
>
>> Just been off site and our F5 that load balances requests to our OCSP
>> service decided not to forward them hence the only way to connect to
>> eduroam was to delete the TLS profile and use PEAP. Talking to all the
>> individual OCSP servers worked just fine.
>
> Get a decent load balancer. :)
>
> Matthew
>
>
> --
> Matthew Newton, Ph.D. <mcn4 at le.ac.uk>
>
> Systems Specialist, Infrastructure Services,
> I.T. Services, University of Leicester, Leicester LE1 7RH, United Kingdom
>
> For IT help contact helpdesk extn. 2253, <ithelp at le.ac.uk>
> -
> List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
More information about the Freeradius-Users
mailing list