Learn how easy it is to sync an existing GitHub or Google Code repo to a SourceForge project! See Demo

Close

#43 certificate-based client authentication configuration

open
Jamie Cameron
None
6
2005-01-22
2004-12-22
Jason Sjöbeck
No

I just read:
http://lists.swelltech.com/pipermail/webmin-l-archive/2002-November/013047.html

and am a bit further toward having this working. It is
prompting for a cert', but does not seem to accept any
cert' I offer it. I see from another server that there
is a file in the 'acl' directory named "serial" which I
understand to contain a list of authorized certificate
serial numbers.

1) Does the "serial" file accept or reject auth' attempts?

2) How does it know which cert's to accept?

3) How do I map a cert' to a user?

4) Once it is working, how do I disable password auth'
for that user?

I ask these questions for everyone out there, not just
me. I would be delighted to distill all of this for us
& perhaps we could put it on the webmin.com/faq.html.

Thanks very much !

Great stuff, really great stuff, keep up great work.

Thanks.

Cheers.

Jason

Discussion

  • Jason Sjöbeck
    Jason Sjöbeck
    2004-12-22

    • assigned_to: nobody --> jcameron
     
  • Jason Sjöbeck
    Jason Sjöbeck
    2005-01-22

    • priority: 5 --> 6
     
  • Jamie Cameron
    Jamie Cameron
    2005-01-22

    Logged In: YES
    user_id=129364

    1) The serial file is just a log, it doesn't control
    authentication.
    2) Any cert that is associated with a user (in the Webmin
    Users module) will be accepted.
    3) This is set in the Webmin Users module, under each users'
    details.
    4) Set his password to 'No password accepted'.