Enable OCSP
To enable OCSP (Online Certificate Status Protocol), set the
security.global.ocsp.enable
and security.global.ocsp.url
entries
in fglprofile.
When these options are set, for each HTTPS connection, once the X509 certificate has been validated, the Web service will check whether all certificates used for that validation are still valid and have not been revoked at the time of the connection.