TLScertFile option
Hi Hugo,
Could you please clarify if the TLScertFile option is design to go to the binding{} or VirtualHost {} section of Hiawatha
Also, we we use this option only at the end server or do they also go at the proxy level?
Thank you
Hugo Leisink
1 May 2016, 07:34
Both. When a client connects to Hiawatha via HTTPS, Hiawatha will use the certificate specified in VirtualHost{}. If none is specified, the one in Binding{} will be used. Specifying a TLScertFile option makes a binding an TLS binding. So, yes, if you specify a TLScertFile in every VirtualHost{}, the one in Binding{} will never be used. But the TLScertFile in VirtualHost{} (requires SNI support in SSL/TLS library) is a feature that came much later than in Binding{}.
This topic has been closed.