Hi All, According to Tomcat 9 Official documentation, only Tomcat NATIVE Connector supports it. https://tomcat.apache.org/tomcat-9.0-doc/ssl-howto.html#Using_OCSP_Certificates
But this site claims https://community.progress.com/s/article/PASOE-OCSP-Stapling-does-not-work that it works with non-native connectors. Please let me know if a non-native connector works or not for OCSP Stamping. Here is the reference configuration: - Update the *protocol *property and add the *sslImplementationName *property as follows: <Connector executor="tomcatThreadPool" port="${psc.as.https.port}" protocol="org.apache.coyote.http11.*Http11NioProtocol*" sslImplementationName="org.apache.tomcat.util.net.jsse.JSSEImplementation" - Add the *-Djdk.tls.server.enableStatusRequestExtension=true* JVM system property in the *<PASOE_instance>\conf\jvm.properties* file to enable OCSP Stapling support for the JVM. - It is also recommended to add the -Djdk.tls.ephemeralDHKeySize=2048 JVM parameter to the *<PASOE_instance>\conf\jvm.properties* file to prevent the use of weak Diffie-Hellman (DH) keys. For more information, please refer to the following Oracle Thanks, Bhavesh
