[rt-users] X.509 Support?

Kevin Chen kchen at MIT.EDU
Thu Jan 6 09:14:53 EST 2005


> From: Robert Spier <rspier at pobox.com>
> 
>>> does rt3 support authentification via X.509 ssl client certificates?
> 
> Using External Authentication, yes.
> 
> For Apache 1 mod-ssl, you should be able to use SSLFakeBasicAuth.
> 
> In Apache 2 it's SSLOptions +FakeBasicAuth
> 
> Read the documentation for your webserver for more details.

With Apache 2.0.51 or later, it's a bit more convenient to use the 
SSLUserName directive.  For example, I have "SSLUserName 
SSL_CLIENT_S_DN_Email".  See 
http://httpd.apache.org/docs-2.1/mod/mod_ssl.html#sslusername for details.

-- 
Kevin Chen
http://www.sneswhiz.com/



More information about the rt-users mailing list