From: Andrey R. <anr...@fr...> - 2012-07-11 18:50:09
|
Greetings, Webmin users list! >> >> can't seem to find a way to force Webmin to >> >> require valid client certificate. >> >> Should I set it up behind nginx to have such option, or can it be enabled in >> >> Webmin itself? >> >> > Do you mean you want clients to authenticate themselves to Webmin using an SSL >> > cert rather than a user name and password? >> >> Not that way. I want to restrict connections to Webmin through the use of >> authorized certificates. (I have working CA to roll out certificates for such >> needs.) >> Authorization will be left to the Webmin/PAM. > At the moment, there is no support for that, sorry. The closest Webmin supports > is running its own CA, which can be used to issue client certs to users so they > can authenticate without needing a password. Thanks. I can circumvent this to an extent, putting webmin to the backend. Does it support X-Real-Ip/X-Forwarded-For (RPAF - "reverse proxy add forward") headers, by the way? I hope it wouldn't be hard to implement, if not. -- WBR, Andrey Repin (anr...@fr...) 11.07.2012, <22:30> Sorry for my terrible english... |