Feature #3037
closedThe relationship between option "ssl.ca-file", "ssl.ca-dn-file" and "ssl.verifyclient.activate" is not well documented.
Description
If configuration option "ssl.verifyclient.activate" is enabled, the "ssl.ca-file" and "ssl.ca-dn-file" should be provided. However, none of the document of these three configuration options mention about this. I suggest that it is better to add the necessary information in the document of https://redmine.lighttpd.net/projects/lighttpd/wiki/Docs_SSL.
Updated by gstrauss over 3 years ago
- Status changed from New to Invalid
- Target version deleted (
1.4.x)
Sorry, I disagree. If you need client certificate authentication, but do not understand what it is or what it entails, then other TLS tutorials on the internet are more appropriate places to begin. The lighttpd wiki page documenting how to configure the TLS modules, including configuration for client certificate authentication, is very different than an introduction to client certificate authentication.
If you would like to write a supplementary wiki page specifically discussing client certificate authentication, the contribution would be welcome.
Also available in: Atom