Welcome! Log In Create A New Profile

Advanced

Whitelisting Client Side Certificates

February 26, 2014 12:37PM
I'm currently working on POC for my company which is looking to use NGINX to validate API Requests using Client Side Certificates. Presently we have it setup so we are self signing/generating these certificates on the local machine and are able to use these successfully in our tests. We are also able to use the revocation list to disable generated certificates.

Moving forward it is possible we will be using an external CA to generate these certificates and we are trying to determine if this is a way to 'whitelist' certificates so only those generated ones which we have visibility of will be verified, rather than a 'blacklisting' approach to block those which are revoked? i.e. Given a client certificate generated by a external CA how can we established this in a trusted list of certs to verify?

Apologies if this question is lacking technical details/knowledge, this is my first hands on experience with SSL.
SubjectAuthorPosted

Whitelisting Client Side Certificates

paddy3883February 26, 2014 12:37PM

Re: Whitelisting Client Side Certificates

dannynoonanFebruary 26, 2014 01:00PM

Re: Whitelisting Client Side Certificates

dannynoonanFebruary 26, 2014 01:04PM

Re: Whitelisting Client Side Certificates

dannynoonanFebruary 26, 2014 03:32PM

Re: Whitelisting Client Side Certificates

paddy3883February 27, 2014 06:16AM



Sorry, only registered users may post in this forum.

Click here to login

Online Users

Guests: 136
Record Number of Users: 5 on November 26, 2014
Record Number of Guests: 173 on November 26, 2014
Powered by nginx    Powered by FreeBSD    PHP Powered    Powered by Percona     ipv6 ready