Forum
TLScertFile option
Fred
1 May 2016, 00:04
Hi Hugo,
Could you please clarify if the TLScertFile option is design to go to the binding{} or VirtualHost {} section of Hiawatha
Also, we we use this option only at the end server or do they also go at the proxy level?
Thank you
Could you please clarify if the TLScertFile option is design to go to the binding{} or VirtualHost {} section of Hiawatha
Also, we we use this option only at the end server or do they also go at the proxy level?
Thank you
Hugo Leisink
1 May 2016, 07:34
Both. When a client connects to Hiawatha via HTTPS, Hiawatha will use the certificate specified in VirtualHost{}. If none is specified, the one in Binding{} will be used. Specifying a TLScertFile option makes a binding an TLS binding. So, yes, if you specify a TLScertFile in every VirtualHost{}, the one in Binding{} will never be used. But the TLScertFile in VirtualHost{} (requires SNI support in SSL/TLS library) is a feature that came much later than in Binding{}.
This topic has been closed.
Copyright © by Hugo Leisink. All rights reserved.
Built upon the Banshee PHP framework.
Built upon the Banshee PHP framework.
