Clear OCSP Response Cache in SGOS
Article ID: 206762
ProxySG Software - SGOS
Advanced Secure Gateway Software - ASG
SGOS will cache an Online Certificate Status Protocol (OCSP) response for the specified time-to-live (TTL).
The CFSSL/debug log shows the response is taken from cache:
You want to clear the OCSP response cache so the appliance fetches a new one.
Clearing the OCSP response cache can be achieved by:
- Selecting the responder as <None> under Configuration > SSL > OCSP.
- Apply settings.
- Set the responder back to the original.
- Apply settings again.