Hai all
I have installed apache with modssl on a FreeBSD box. I also made
several CA's, server-cert an client-certs. Nice.
At the along run, I want to use client authorization for a (big) part
of my server; now I'm doing some test.
Functionally it is working, I can only "login" when I have a cert. And
I'm able to "read out" the cert (with SSLOptions +StdEnvVars)
But, ...
For (almost) all pages I want to browse, Netscape does ask whiter it
should send the cert...
When I say "OK" it works. But this no way to work...
When I compare this to "normal, password based authorization"; this is
different and irritating.
With passwords I have to "log in" once; afterwards the browser will
send this information automatically.
That is what I expected for client authorization, too.
Does anybody have the same/other situation?
I'm not sure whetter my assumption (about "sending" the cert once, in
the USERS-view) is wrong. Or is my config wrong. Or is it an option?
Or ....
Any help is appreciated.
---GAM
"This should be a jolly quote"
====
Do NOT send MS-Word or other MS-bits to me!
I can read them now, but I still don't like it.
______________________________________________________________________
Apache Interface to OpenSSL (mod_ssl) www.modssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
