- Plesk for Linux
- Plesk for Windows
Is it possible to enable OCSP Stapling for a specific domain?
How to configure OCSP Stapling for a domain?
Plesk does not support officially such feature but it can be implemented as Apache or Nginx directive doing the following after installing the certificate for the domain:
Plesk > Domains > yourdomain.tld > Apache & Nginx Settings > Additional Apache directives
CONFIG_TEXT: SSLUseStapling on
Plesk > Domains > yourdomain.tld > Apache & Nginx Settings > Additional nginx directives
CONFIG_TEXT: ssl_stapling on;
resolver 18.104.22.168 22.214.171.124 valid=300s;
file shoud contain Root Certificate and all the Intermediate cetificates data.
Note: For each domain where the OCSP Stapling is needed, it has to be assigned an IP since it will only work correctly if the IP itself has the certificate assigned otherwise, it will keep returning the following:
# openssl s_client -connect example.com:443
OCSP response: no response sent