https://bz.apache.org/bugzilla/show_bug.cgi?id=58020
Bug ID: 58020
Summary: When user authenticates with certificate which has
their Microsoft Universal Principal Name in
subjectAltName, that UPN cannot be used with
SSLUserName for further access controls
Product: Apache httpd-2
Version: 2.5-HEAD
Hardware: PC
OS: Linux
Status: NEW
Severity: normal
Priority: P2
Component: mod_ssl
Assignee: [email protected]
Reporter: [email protected]
We have users that seem to have access cards with certificates that have
Microsoft Universal Principal Name in subjectAltName. Dumping the certificate
with openssl x509 -text shows
X509v3 Subject Alternative Name:
othername:<unsupported>
but in C-code, name->d.otherName->value->value.asn1_string seems to be the
correct value.
Since SSL_CLIENT_SAN_* were added to Apache HTTP Server code base recently,
please consider adding support for otherName as well.
--
You are receiving this mail because:
You are the assignee for the bug.
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
