I need to use nginx with client validation. Lots of good info about that. But I need to ensure that nginx verifies the certificate has not been revoked through CRL or OCSP checking. Is that part of ssl_verify_client on ? How can I specify a cached CRL location? --woodyby woodyweaver - Nginx Mailing List - English