Robert Giles
2015-Sep-03 18:25 UTC
Reviving an old thread: "requiring client certificates for external connections"
Hi folks - reviving an old thread from 2010:
http://www.dovecot.org/list/dovecot/2010-December/055837.html
We're basically looking to do the same thing: require client
certificates for external connections, while preserving certificate-less
username/password authentication for internal connections.
Any tips on the best way to accomplish this?
'ssl_verify_client_cert = yes' can go within a local {} block, but it
doesn't seem to force the client to submit a certificate.
Thanks in advance -
Robert Giles
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3835 bytes
Desc: S/MIME Cryptographic Signature
URL:
<http://dovecot.org/pipermail/dovecot/attachments/20150903/bdeb1701/attachment.p7s>
Maybe Matching Threads
- Problem with requiring client certificates for external connections
- tsan_interface_java.h; any users? reviving https://github.com/google/java-thread-sanitizer?
- tsan_interface_java.h; any users? reviving https://github.com/google/java-thread-sanitizer?
- tsan_interface_java.h; any users? reviving https://github.com/google/java-thread-sanitizer?
- ssl-proxy: client certificates and crl check
Wisdom of the Ancients
