[warn] 334778#334778: "ssl_stapling" ignored, no OCSP responder URL in the certificate "/etc/letsencrypt/live/getsub.bazzay.ru/fullchain.pem"

My domain is: getsub.bazzay.ru

I ran this command: nginx -t

It produced this output: [warn] 334778#334778: "ssl_stapling" ignored, no OCSP responder URL in the certificate "/etc/letsencrypt/live/getsub.bazzay.ru/fullchain.pem"
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful

My web server is (include version): nginx/1.24.0

The operating system my web server runs on is (include version): https://getsub.bazzay.ru

My hosting provider, if applicable, is: qwins

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):certbot 2.9.0

Let's Encrypt no longer supports OCSP stapling (OCSP Service Has Reached End of Life - Let's Encrypt, Ending OCSP Support in 2025 - Let's Encrypt). Your nginx configuration attempts to perform OCSP stapling, but it fails since the certificate doesn't support it.

To fix this warning, you can turn off OCSP stapling in your nginx webserver configuration. Find the line where it says ssl_stapling on and remove it.

Also, please note that for nginx this is just a warning and your webserver will continue to operate just fine even with that option left on.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.