Ability to Disable Online Certificate Status
Protocol (OCSP) for Transport Layer Security (TLS) Connections to Remote Syslog
Servers
To comply with
RFC 6960
(X.509 Internet Public Key Infrastructure Online Certificate Status Protocol – OCSP),
ExtremeXOS 30.7 provides the ability to disable Online Certificate Status Protocol
(OCSP) check for Transport Layer Security (TLS) connections to remote Syslog
servers.
Note
Be sure you understand the ramifications of turning off OCSP if you
chose to do so.
Supported Platforms
ExtremeSwitching X435, X440-G2, X450-G2, X460-G2, X465, X590, X620, X670-G2, X690, X695, and X870
series switches.
New CLI Commands
configure syslog
tls
ocsp [on | off]
Changed CLI Commands
The following show commands now displays the OCSP check status.
show log configuration
