6 Apr
2022
6 Apr
'22
9:20 a.m.
Hi, We're checking certificates against an OCSP endpoint, which doesn't support nonce. Everything works fine, and we've added this to the eap module configuration: use_nonce = no The plan is to support multiple PKIs in the future and were wondering what the most elegant way would be to support OCSP endpoints that support nonce and ones that don't. Is there a way to set this value at runtime based on request attributes? Regards, Emile