Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - General
User Name
Linux - General This Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.


  Search this Thread
Old 01-22-2003, 02:06 AM   #1
Registered: Dec 2001
Posts: 35

Rep: Reputation: 15
Apache client certificate for each user


I've set up Apache to authenticate based on the client certificate that the user pass to it. However, it's checked by looking at the signer of the certificate, not the certificate itself. So it's difficult to disallow one of the user, since they have the same CA sign, but different certificate.

Is it possible for Apache's configuration to have a list of known client certificates?
Old 01-22-2003, 04:44 AM   #2
Senior Member
Registered: Dec 2001
Location: The Netherlands
Distribution: Ubuntu
Posts: 1,316

Rep: Reputation: 47
Well since the certificates have all been signed by the same authority you have to find something else unique about them. Usually you would use the Distinguished Name to uniquely identify the certificate.
Now I was looking through the ssl documentation for apache and it seems there are two different implementations appache-ssl and mod-ssl. I don't know which one you are using but for apache-ssl you can set something like:
SSLCheckClientDN filename

The file contains a list of names of clients who are allowed to connect. See

I'm sure mod-ssl has something similar.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Apache certificate server progjm Linux - Security 4 07-09-2005 03:10 PM
How do I use a microsoft certificate on apache? svartrev Linux - Security 5 06-06-2005 03:00 AM
OpenSSL + Apache certificate, how? The_Nerd Linux - Software 2 12-26-2004 10:18 PM
apache-ssl certificate no good ocularbob Linux - Software 2 09-30-2003 05:37 PM
How to create new SSL certificate for apache ?? chuck77 Linux - General 7 05-15-2003 02:16 PM > Forums > Linux Forums > Linux - General

All times are GMT -5. The time now is 09:31 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration