Hi! I have one root CA and ten sub-CA-s. In mu NGINX configuration I want to accept authentication requests for certificates issued by two sub-CA-s and reject all requests for certificates issued by any other sub-CA (including external CA-s). Basically, I want to trust only two subordinate authorities for authentication in NGINX. How is it possible? Thanks, UVby uv - How to...
I would like to know, is it possible to filter TLS traffic on server side by using extendedKeyUsage value in end user certificate. My goal is to accept only certificates with specific information in this field, only certificates with "TLS Web Client Authentication" value in extendedKeyUsage field should be able to access the server. Thanks, UVby uv - How to...
uv Wrote: ------------------------------------------------------- > Hi! > > I use two-way SSL in my Nginx server and have three different chains > of trusted client certificates. All client certificate chains have own > OCSP responder. How can I configure multiple OCSP responders using > ssl_stapling_responder directive? > > Thanks, > > UVby uv - How to...
Hi! I use two-way SSL in my Nginx server and have three different chains of trusted client certificates. All client certificate chains have own OCSP responder. How can I configure multiple OCSP responders using ssl_stapling_responder directive? Thanks, UVby uv - How to...