Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
1480
Views
0
Helpful
1
Replies

OCSP request to a specific TCP port

SemenErmachenko36396
Level 1
Level 1

‎07-09-2021 04:24 AM

Hello 

We plan to place OCSP responder behind HA Proxy.

Is it possible to configure ISE to send ocsp requests to a specific TCP port for example 888?

In  OCSP Profile

URL  http://test.domai.com:888/ocsp 

Has anyone tested it this way?

0 Helpful
1 Reply 1

Mike.Cifelli
VIP Alumni
VIP Alumni

‎07-09-2021 05:17 AM

I have not tested this, but I dont see why it would not work.  As long as the responder is listening on that port I dont see this being an issue.  In the OCSP profile you are configuring the url to use.  I would recommend testing it by disabling this under the trusted cert/s for which you assign the OCSP profile to: Reject the request if OCSP Responder is unreachable.  This way clients will remain unaffected.  Then once you confirm it works or does not work you can re-enable.  HTH!

0 Helpful
Customers Also Viewed These Support Documents
Top