Hi, This may seem a trivial thing but I'm still a bit new to this and not quite clear how to do this. I'm trying to setup an SSL_enabled website using Apache & Mod_SSL. So far, the thing is up and running very nicely with all required modules. Currently, when you go to a url, https://on.our.site/, it "pushes" the certificate and then proceeds with SSL communication once the client browser has the cert. in place. Ideally what I'd like to do is setup a structure thus: -assume 50 different clients access this site -assume 50 different directories on the web server, immediately off the root dir of the web server -assume that each client should have access only to their directory and none other on the web server. Is there an "easy" way to (a) prevent the web server from giving out certificates for SSL communication (b) for me to (manually distributed, via email or whatever) issue 50 client certificates (signed by my server acting as the Cert.Authority) to each of the clients .. and then setup access control within each directory to permit *only* the appropriate Certificate access ..? If anyone has any ideas, please send me an email at this address (tdc <AT> mailandnews.com) Thanks VERY much for your help, -Tim Chipman (in case it is relevant: SW in use on the server is thus-- Apache 1.3.12, OpenSSL 0.9.6, ModSSL 2.6.6, ApacheJSERV 1.1.2) ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
