Testing OCSP Stapling
We have configured OCSP stapling and we want to test whether or not it works. It is easy to check using the openssl s_client command:
Use OPENSSL
openssl s_client -connect yourdomain.com:443 -tlsextdebug –status
In the response, look for the OCSP response:
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
That means the OCSP stapling is working. If you get a response as below, the OCSP stapling is not enabled.
OCSP response: no response sent