RE: accepting self signed certs

[Konark]

Hi Samy,   1.       If server ready to accept any unanimous certificate (certificate  need not be verified by the any of the server trusted CA’s ) like your case self signed client certificate ,There is no point of  asking client authentication.  If server is requested for client authentication client should send certificate which must be issued by one of the server trusted CA’s.   2.       Generally servers wont ask client authentication for general connection, when ever  client request for some critical resources then trough renegotiation server   Can ask client authentication . In this case client authentication is must it cant accept the self signed OR unanimous certificate.   Regards, Konark 09342513592   ***************************************************************************************             This e-mail and attachments contain confidential information from HUAWEI, which is intended only for the person or entity whose address is listed above. Any use of the information contained herein in any way (including, but not limited to, total or partial disclosure, reproduction, or dissemination) by persons other than the intended recipient's) is prohibited. If you receive this e-mail in error, please notify the sender by phone or email immediately and delete it! -----Original Message----- From: owner-openssl-users@openssl.org [mailto:owner-openssl-users@openssl.org] On Behalf Of Samy Thiyagarajan Sent: Thursday, February 02, 2006 6:02 PM To: openssl-users@openssl.org Subject: accepting self signed certs   hi.. My test server has a list of trusted CAs. Now i also want to accept connections requested by clients with self signed certificates. Any simple way to accept the self signed certs ? Thanks in advance. Samy