This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Get hands-on experience with 20+ free Google Cloud products and $300 in free credit for new customers.
Log in to ask a question

PSD2- Client certificate validation using OCSPStapling

Posted on 07-01-2019 04:53 PM
API-Evangelist
Silver 5
Silver 5
Reply posted on --/--/---- --:-- AM

Can anyone share a sample/sequence of usage of OCSPStapling in apigee. We have a need to validate client certificates using OCSP..

https://docs.apigee.com/api-platform/fundamentals/virtual-host-property-reference

==

When enabled, an OCSP (Online Certificate Status Protocol) client sends a status request to an OCSP responder to determine if the certificate is valid. The response indicates if the certificate is valid and not revoked.

The default value is off. Set to on to enable OCSP. TLS must be enabled to enable OCSP. You can also use OCSP with two-way TLS.

==

Client -> Apigee(VH with OCSP enabled)

Want to understand internally what happens within the flow. Do we need to extract the Authority Information access endpoint and call the endpoint or Apigee internally take care of the verification during handshake?

Similar question is posted here..

https://community.apigee.com/questions/61869/validating-client-certificates-with-ocsp-andor-crl.html

Opened a case as well but still waiting for response.

Thanks.

1 5 975
Topic Labels
5 REPLIES 5
Top Solution Authors
View all