4

Apache, https & certificates per directory

view full story
linux-howto

http://www.linuxquestions.org – Hello, I was wondering if it is possible to have different certificates for different directories in a https-directory ? So what I want is that for a specific directory a specific TLS-certificate is needed by the http-client to be authorized to the directory. Directory /var/www/html/secure/1 needs a certificate A. Directory /var/www/html/secure/2 need a different certificate B. So I have 1 CA, which signs the other certificates of the specific directory. The http-client gets the certificate A or certificate B (to be authenticated for secure/1 of secure/2) (HowTos)

dayu's picture
Submitted by dayu on 11/23/2010 – Made popular on 11/23/2010

Stories similar to Apache, https & certificates per directory

Renew SSL client certificate 20 weeks 2 days ago

For a internally used webbased software, which must be available from everywhere, I have created client certificates which are installed in the browsers of authorized consumers.

Now, with 2012 being over, all of them are expired and need a renewal. I've given out PKCS #12 certificates (.p12)

Here my questions

Is it possible to extend the client certificate lifetime? Do I have to reinstall the

Start TLS and 389 Directory 34 weeks 15 hours ago

I'm trying to configure Start TLS on 389 Directory server, but I'm having all sorts of issues.

I've been following this doc: https://access.redhat.com/knowledge/docs/en-US/Red_Hat_Directory_Server/...

which specifies that I should create a certificate for both the directory server and admin server. I've imported the CA cert on both servers.

RapidSSLis a trustworthy certificate authority dealing with online security certificates. The main functioning part of such authority covers small and medium enterprises. It provides an inviolable online security with 256-bit encryption.

Setup IIS to require client certificate and to use anonymous authentication

I have a WCF web service for our customers to use. I want to protect this using client certificates.

I am configuring Apache to use client certificate authentication. When I brows to the site however, it does not ask me for a certificate, unless SSLCACertificateFile is specified. It will then ask for a certificate through the browser. The browser will pop up a box asking me to choose a certificate (it only shows certificates signed by the CA specified by SSLCACertificateFile).

Exchange certificate questions 42 weeks 9 hours ago

I got the following message The STARTTLS certificate will expire soon. Now I tried to create new certificates, but currently the old ones are still used.

Questions:

Can I backup the old certificate somehow (in case I remove one but missed a thing)? Does a service can be assigned to only one certificate?

I have a website on Windows Server 2003 which is set to accepts client certificates When connecting to my website on the QA environment I am prompted with my client certificate but this does not happen on the Production environment.

I have added the root chain (a total of 2 certificates) of the my client certificate to the Trusted Root Certificate Authority on both the QA and the Production envir

For a project as part of the European Grid Infrastructure (EGI) we need SSL client certificate verification for a service running on nginx. As there are several root CAs allowed within EGI, we need nginx to check them all during client certificate validation.

I have a client certificate from startssl. I can login to their control panel with that certificate and Firefox.

But with my asp.net website I am NOT prompted for the certificate only when using IE or Chrome not Firefox.

I did second test on another pc so I looked at FF certificate authority. I can see that intermediate ca are missing. Why FF doesn't download them automatically ?