Hi Everyone,
I need your help. I am getting back from 30 day vacation and started working on Pound again. I have some questions. I asked for help earlier this year with this and I need some further assistance. Can you all help me. I have created my CA root certificate otherwise known as ca.pem. This root certificate or ca.pem goes into the VerifyList directory correct? Then I use this CA root cert or ca.pem to sign my certificates and have the user install those certificates in their browser and I should be able to access my server/database correct? Can anyone give me a good step by step process on making sure I am doing this right for Pound? I used this link: http://www.octaldream.com/scottm/talks/ssl/opensslca.html And also used Mako Cert Manager as well to create my CA but it is not accepting my certificates. I have pound.cfg set with ClientCert 2 2 VerifyList "/etc/pound/Verifylist/ca.pem" Is this correct? Cert "etc/pound/sign.pem" is just a dummy pem because it is required by Pound. I only want Pound to accept certificates that were signed by my CA. And I am having issues with this. If you all can help, I could really use it because I am a little out of sorts with Pound and Certs. Warren
