Forum
What is the use of RequiredCA ?
Praseed
7 October 2011, 05:21
Hiawatha version: 7.6
Operating System: Linux 2.6.31.14
Hi Hugo,
May be this is a wrong place to ask, but I couldn't get a clear picture of what is the use of the RequiredCA field in Virtualhost configuration in Hiawatha
According to this HowTo page Hiawatha SSL bindings [www.hiawatha-webserver.org], I set up my SSLcertFile as follows
-----BEGIN RSA PRIVATE KEY-----
[webserver private key]
-----END RSA PRIVATE KEY-----
-----BEGIN CERTIFICATE-----
[webserver certificate]
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
[optional CA intermediate certificate]
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
[CA root certificate]
-----END CERTIFICATE-----
Now I am wondering what is expected to be there in the RequiredCA file?
Is it again my [CA root certificate], which is required to be sent by the client when the client attempts to make a connection with the Hiawatha server?
Thanks
Praseed
Hugo Leisink
7 October 2011, 08:12
You should only use the RequiredCA option if you want to have SSL client authentication. With SSL client authentication, a user must have a SSL certificate installed in the browser. This certificate must be issued by one of the CA's which has its root certificate present in the file specified by the RequiredCA option. Only users wich such client certificate will be able to setup a SSL connection to the webserver.
If you don't want SSL client authentication, you can ignore this option.
If you don't want SSL client authentication, you can ignore this option.
Praseed
13 October 2011, 00:41
Thank you Hugo
This topic has been closed.
Copyright © by Hugo Leisink. All rights reserved.
Built upon the Banshee PHP framework.
Built upon the Banshee PHP framework.
