Vanni Galesso wrote:
> Hello ,
>
> I'm using Apache with SSLeay with Client Authentication .
> The problem is that Apache ask the client certificate every time I load
> a page .
> Es. I have a html page with 3 frames so the Web server ask me 3 times my
> certificate .
> Is it possible to set something that allow me to present only one time
> my certificate ??
>
> Thanks in advanced .
>
> Regards VANNI
When you set Apache-SSL to request client authentication, it asks for a
client certificate for every connection. This means that for every page,
(and every frame it seems) the browser opens a connection, sends a client
certificate, and then closes it. In this case, the browser isn't smart
enough to send the same certificate you already, and asks you again which
one to send. If you only use one certificate for client authentication, you
can tell Netscape v4 to always use a certain certificate, and not ask you
every time. To do this, go into the Security Info window, select the
Navigator link, and select the certificate you want to use in the drop down
menu. This will get rid of the annoying popups asking you for a
certificate.
While we're on this topic, is it possible to configure Apache-SSL to only
request client authentication for certain directories and URL's? As far as
I can tell, you can only specify client authentication for an entire server
(or virtual server.)
As for Mozilla, it might be a good idea to allow users to match client
certificate to the domain names they should be sent to. This would allow
you to use different certificates at different sites, with out being asked
by the browser which one to use every time, or forcing you to switch them
manually in the Security dialog.
- Kris
+-------------------------------------------------------------------------+
| Administrative requests should be sent to [EMAIL PROTECTED] |
| List service provided by Open Software Associates, http://www.osa.com/ |
+-------------------------------------------------------------------------+
