Le 22/11/13 18:22, Philippe Lelidy a icrit :
-3- I have a S/MIME certificate in my UA, but lacks ca file, so I get:
debug: lka: X509 verify: unable to get local issuer certificate
smtp-in: Client certificate verification failed on session
76aea37b26a4f2e2
debug: lka: authenticating for mycreds:phl
smtp-in: Accepted authentication for user phl on session 76aea37b26a4f2e2
Hence, it seems that OpenSMTPD has this undocumented feature that it
is able to authenticate using X509 certificate. Will give it a try.
I tried with
cat sub.class1.server.ca.pem ca.pem > sub-ca-bundle.ca.pem
and
pki smtp.mondomaine.fr ca "/etc/ssl/startssl/sub-ca-bundle.ca.pem"
with exactly the same failure.
Philippe Lelidy
