[squid-users] sorry, ssl once again (client certificates)

From: alp <[email protected]>
Date: Tue, 17 Dec 2002 11:25:37 +0100

hi ,
after using the latest 2.5 squid version, i am able to apply the ssl-2.5
patch and even https now works.

my question:
how do i use the client certificate options?????
i generated a client certificate (ca name is "ca_test") and added the
following option to https_port:
clientca=/usr/local/squid/calist.txt
i wrote "ca_test" into the file calistl.txt
and tried to get my https-site.
indeed, squid requests now a client certificate, but when i choose my
certificate, there is the following error:
ssl unknown certificate error
client negatiateSSL: error negotiating ssl connection: ...no certificate
returned.

so, is it right to use a file "calist.txt" with only the names of the
issuing CA???
or does squid has to know the CA-certificate, too?

please help.
thx in advance,
alp
Received on Tue Dec 17 2002 - 03:24:36 MST

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:12:06 MST