Specify a maximum allowable age for OCSP stapling responses

THE INFORMATION IN THIS ARTICLE APPLIES TO:

  • EFT v7.3.6 and later

DISCUSSION

This setting is used to specify a maximum allowable age for OCSP stapling responses. A value of 0 means to cache responses until the "next update." But if you you need to refresh OCSP tokens more frequently, this lets you specify the frequency. Normally, "next update" is sufficient.

 In v8.0 and later:

Add the name:value pair to the AdvancedProperties.JSON file as described in the "Advanced Properties" topic in the online help for your version of EFT.

{

"OCSPStaplingResponseMaxAgeSec": non-zero value

}

In versions prior to v8.0: 

HKEY_LOCAL_MACHINE\Software\Wow6432Node\GlobalSCAPE Inc.\EFT Server 7.3\

Name: OCSPStaplingResponseMaxAgeSec

Type: uint32_t
Default Value: 0
Minimum Value: 0
Maximum Value: 2147483647
Description: Maximum allowable age for OCSP stapling responses. Default value (0) means cache responses until 'nextUpdate'
Posted 9 Years Ago, Updated 3 days ago @ 3:42 PM
https://kb.globalscape.com/Knowledgebase/11363/Specify-a-maximum-allowable-age-for-OCSP-stapling-responses