On Thu, Jan 06, 2000, Andrew Hall wrote:
> As I have read from recent postings to the list, any client certs generated
> by Netscape's Certificate Server will present the UID as the OID:
> 0.9.2342.19200300.100.1.1 of which mod_ssl/apache will ignore this when
> presenting the environment variable:
>
> SSL_CLIENT_S_DN_UID .
>
> As I really need this presented as a valid UID, can someone please tell me
> where I can patch the openssl code to recognise this OID as the UID.
>From CHANGES:
| Changes with mod_ssl 2.4.9 (05-Nov-1999 to 24-Nov-1999)
|
| [...]
|
| *) Added support for SSL_{CLIENT,SERVER}_{S,I}_DN_{T,I,G,S,D,UID}
| variables (corresponding to X.509 title, initials, givenName, surname,
| description and uniqueIdentifier OIDs) to allow the checking of more
| X.509 certificate ingredients.
|
| [...]
In short: just upgrade to 2.4.9 and the variable exists for you.
Ralf S. Engelschall
[EMAIL PROTECTED]
www.engelschall.com
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
