RE: SSL Client Auth with Virtual Hosts

Thu, 02 Jun 2005 06:27:22 -0700 

Are there any parameters that I am missing, or am I doing something
incorrect?

On my setup, client authentication is either on or off globally. I can't
seem to isolate it at the virtual host level.

Thanks. 

Nadeem

Example again:

NameVirtualHost 111.111.111.111:443

<Virtualhost 111.111.111.111:443>
    ServerAdmin [EMAIL PROTECTED]
    DocumentRoot /var/www
    ServerName abc1-no-client-auth.com

    SSLEngine on
    SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
</VirtualHost>

<Virtualhost 111.111.111.111:443>
    ServerAdmin [EMAIL PROTECTED]
    DocumentRoot /var/www
    ServerName abc1-ssl-client-auth.com

    SSLEngine on
    SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
    SSLVerifyClient require
    SSLVerifyDepth 2
    SSLCACertificateFile /etc/httpd/conf/ssl.crt/server-calist.crt
    SSLOptions +StdEnvVars +ExportCertData
</VirtualHost>



-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED] On Behalf Of Daniel Kimblad
Sent: Thursday, June 02, 2005 8:50 AM
To: [email protected]
Subject: Re: SSL Client Auth with Virtual Hosts

Yes, I've had an environment like that running.

/Daniel

----- Original Message -----
From: "Hoda Nadeem" <[EMAIL PROTECTED]>
To: <[email protected]>
Sent: Tuesday, May 31, 2005 6:05 PM
Subject: SSL Client Auth with Virtual Hosts




Does anybody know if it is possible to use virtual hosts with one
virtual host with ssl client authentication, but the other one without?

Example: 

NameVirtualHost 111.111.111.111:443

<Virtualhost 111.111.111.111:443>
    ServerAdmin [EMAIL PROTECTED]
    DocumentRoot /var/www
    ServerName abc1-no-client-auth.com

    SSLEngine on
    SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
</VirtualHost>


NameVirtualHost 111.111.111.111:443

<Virtualhost 111.111.111.111:443>
    ServerAdmin [EMAIL PROTECTED]
    DocumentRoot /var/www
    ServerName abc1-ssl-client-auth.com

    SSLEngine on
    SSLCertificateFile /etc/httpd/conf/ssl.crt/server.crt
    SSLCertificateKeyFile /etc/httpd/conf/ssl.key/server.key
    SSLVerifyClient require
    SSLVerifyDepth 2
    SSLCACertificateFile /etc/httpd/conf/ssl.crt/server-calist.crt
    SSLOptions +StdEnvVars +ExportCertData
    SSLSessionCache none
</VirtualHost>
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [email protected]
Automated List Manager                            [EMAIL PROTECTED]


______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [email protected]
Automated List Manager                            [EMAIL PROTECTED]
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl)                   www.modssl.org
User Support Mailing List                      [email protected]
Automated List Manager                            [EMAIL PROTECTED]

Reply via email to