2018-05-04 16:23 GMT+02:00 Graham Smith <[email protected]>: > Hi, > > --> I don't know any better if this is a dumb question. > > In the example below is there any way to set up the server and client so the > client doesn't need its own certificate and key while still getting an > encrypted channel and authenticating with "x509/name"? > > https://www.rsyslog.com/doc/master/tutorials/tls_cert_server.html
no, and as an explanation the mode "x509/name" means that the name present in the (X.509) certificate is used for authentication. But you may deploy the same certificate with the same name to all clients, if that is sufficient for your needs. HTH Rainer > > Regards > > Graham > > > _______________________________________________ > rsyslog mailing list > http://lists.adiscon.net/mailman/listinfo/rsyslog > http://www.rsyslog.com/professional-services/ > What's up with rsyslog? Follow https://twitter.com/rgerhards > NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of > sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T > LIKE THAT. _______________________________________________ rsyslog mailing list http://lists.adiscon.net/mailman/listinfo/rsyslog http://www.rsyslog.com/professional-services/ What's up with rsyslog? Follow https://twitter.com/rgerhards NOTE WELL: This is a PUBLIC mailing list, posts are ARCHIVED by a myriad of sites beyond our control. PLEASE UNSUBSCRIBE and DO NOT POST if you DON'T LIKE THAT.
