Trying to migrated from Apache to NGINX and I'm confused about the OCSP functionality. I see that NGINX has OCSP stapling but it doesn't appears to validate a client certificates.
We are in a PKI x509 environment and I need to ensure that client certificates have not been revoked by checking a CRL. We have OCSP servers that have this information.
with ssl_verify_client require can I ensure that each client certificate is valid by checking crl list via OCSP?