Hi Roberto, > Le 24 févr. 2017 à 09:04, mlist <[email protected]> a écrit : > > Hi, > > We configured haproxy for client certificates: > > bind <IP>:443 ssl crt <path> ca-file <path> verify optional > > Configuring in this way (at bind stage), however, haproxy always ask client > certificate > if present in the certificate store - for all domain, for all backends. > > There is solution so haproxy ask/manage client certificates only for specific > domain > or other request matching ? > > So it is possible to share a bind on <IP>:443 port for mixed backends, > accepting/requesting > client certificates and other not using client certificates. > > Roberto
You can do that with 'crt-list' in 1.8dev. Manu
