Hi Samy,
1. If server ready to accept any unanimous certificate (certificate need not be verified by the any of the server trusted CA’s ) like your case self signed client certificate ,There is no point of asking client authentication. If server is requested for client authentication client should send certificate which must be issued by one of the server trusted CA’s.
2. Generally servers wont ask client authentication for general connection, when ever client request for some critical resources then trough renegotiation server
Can ask client authentication . In this case client authentication is must it cant accept the self signed OR unanimous certificate.
Regards, Konark 09342513592
*************************************************************************************** This e-mail and attachments contain confidential information from HUAWEI, which is intended only for the person or entity whose address is listed above. Any use of the information contained herein in any way (including, but not limited to, total or partial disclosure, reproduction, or dissemination) by persons other than the intended recipient's) is prohibited. If you receive this e-mail in error, please notify the sender by phone or email immediately and delete it! -----Original Message-----
|
- RE: accepting self signed certs Konark
- self signed cert - error : unknown CA Samy Thiyagarajan
- Re: self signed cert - error : unknown CA Alain Damiral
- Re: self signed cert - error : unknown CA Kyle Hamilton
- Re: self signed cert - error : unknown ... Alain Damiral
- Re: self signed cert - error : unk... Kyle Hamilton
- Re: self signed cert - error :... Alain Damiral
- Re: self signed cert - err... Kyle Hamilton
- Question on SSL_connect Ambarish Mitra
- Re: Question on SSL_connec... Kyle Hamilton
- Re: Question on SSL_connec... Peter Sylvester